Vulnerability-Lookup

CVE-2018-5332 (GCVE-0-2018-5332)

Vulnerability from cvelistv5 – Published: 2018-01-11 07:00 – Updated: 2024-08-05 05:33

Summary

In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).

Severity

No CVSS data available.

CWE

Assigner

mitre

References

15 references

URL	Tags
http://git.kernel.org/cgit/linux/kernel/git/torva…	x_refsource_CONFIRM
https://www.debian.org/security/2018/dsa-4187	vendor-advisoryx_refsource_DEBIAN
https://github.com/torvalds/linux/commit/c0955087…	x_refsource_CONFIRM
https://usn.ubuntu.com/3617-1/	vendor-advisoryx_refsource_UBUNTU
https://usn.ubuntu.com/3619-2/	vendor-advisoryx_refsource_UBUNTU
https://usn.ubuntu.com/3617-3/	vendor-advisoryx_refsource_UBUNTU
https://usn.ubuntu.com/3632-1/	vendor-advisoryx_refsource_UBUNTU
https://usn.ubuntu.com/3620-2/	vendor-advisoryx_refsource_UBUNTU
http://www.securityfocus.com/bid/102507	vdb-entryx_refsource_BID
https://access.redhat.com/errata/RHSA-2018:0470	vendor-advisoryx_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2018…	mailing-listx_refsource_MLIST
https://usn.ubuntu.com/3617-2/	vendor-advisoryx_refsource_UBUNTU
https://usn.ubuntu.com/3620-1/	vendor-advisoryx_refsource_UBUNTU
https://usn.ubuntu.com/3619-1/	vendor-advisoryx_refsource_UBUNTU
https://git.kernel.org/pub/scm/linux/kernel/git/t…	x_refsource_CONFIRM

Date Public

2018-01-11 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T05:33:43.754Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c"
          },
          {
            "name": "DSA-4187",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2018/dsa-4187"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c"
          },
          {
            "name": "USN-3617-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3617-1/"
          },
          {
            "name": "USN-3619-2",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3619-2/"
          },
          {
            "name": "USN-3617-3",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3617-3/"
          },
          {
            "name": "USN-3632-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3632-1/"
          },
          {
            "name": "USN-3620-2",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3620-2/"
          },
          {
            "name": "102507",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/102507"
          },
          {
            "name": "RHSA-2018:0470",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:0470"
          },
          {
            "name": "[debian-lts-announce] 20180502 [SECURITY] [DLA 1369-1] linux security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html"
          },
          {
            "name": "USN-3617-2",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3617-2/"
          },
          {
            "name": "USN-3620-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3620-1/"
          },
          {
            "name": "USN-3619-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/3619-1/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-01-11T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c)."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-01-05T20:14:35.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c"
        },
        {
          "name": "DSA-4187",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2018/dsa-4187"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c"
        },
        {
          "name": "USN-3617-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3617-1/"
        },
        {
          "name": "USN-3619-2",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3619-2/"
        },
        {
          "name": "USN-3617-3",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3617-3/"
        },
        {
          "name": "USN-3632-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3632-1/"
        },
        {
          "name": "USN-3620-2",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3620-2/"
        },
        {
          "name": "102507",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/102507"
        },
        {
          "name": "RHSA-2018:0470",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:0470"
        },
        {
          "name": "[debian-lts-announce] 20180502 [SECURITY] [DLA 1369-1] linux security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html"
        },
        {
          "name": "USN-3617-2",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3617-2/"
        },
        {
          "name": "USN-3620-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3620-1/"
        },
        {
          "name": "USN-3619-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/3619-1/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2018-5332",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c)."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c",
              "refsource": "CONFIRM",
              "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c"
            },
            {
              "name": "DSA-4187",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2018/dsa-4187"
            },
            {
              "name": "https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c",
              "refsource": "CONFIRM",
              "url": "https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c"
            },
            {
              "name": "USN-3617-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3617-1/"
            },
            {
              "name": "USN-3619-2",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3619-2/"
            },
            {
              "name": "USN-3617-3",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3617-3/"
            },
            {
              "name": "USN-3632-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3632-1/"
            },
            {
              "name": "USN-3620-2",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3620-2/"
            },
            {
              "name": "102507",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/102507"
            },
            {
              "name": "RHSA-2018:0470",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:0470"
            },
            {
              "name": "[debian-lts-announce] 20180502 [SECURITY] [DLA 1369-1] linux security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html"
            },
            {
              "name": "USN-3617-2",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3617-2/"
            },
            {
              "name": "USN-3620-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3620-1/"
            },
            {
              "name": "USN-3619-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/3619-1/"
            },
            {
              "name": "https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e",
              "refsource": "CONFIRM",
              "url": "https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2018-5332",
    "datePublished": "2018-01-11T07:00:00.000Z",
    "dateReserved": "2018-01-11T00:00:00.000Z",
    "dateUpdated": "2024-08-05T05:33:43.754Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2018-5332",
      "date": "2026-05-27",
      "epss": "0.00037",
      "percentile": "0.11369"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"3.2.99\", \"matchCriteriaId\": \"87B791D3-1C62-44B7-B4E4-E70E6F183462\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"3.3\", \"versionEndExcluding\": \"3.16.54\", \"matchCriteriaId\": \"D999C96C-7B24-4418-9FEE-AF2D2539E28E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"3.17\", \"versionEndExcluding\": \"3.18.92\", \"matchCriteriaId\": \"56D29D8F-12F1-42E4-92EC-4DEC7214BA16\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"3.19\", \"versionEndExcluding\": \"4.1.50\", \"matchCriteriaId\": \"F71F6650-13B4-486F-80AC-20D871806D44\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.2\", \"versionEndExcluding\": \"4.4.112\", \"matchCriteriaId\": \"899C6EC3-5202-4A9A-9304-901FA4DECAFF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.5\", \"versionEndExcluding\": \"4.9.77\", \"matchCriteriaId\": \"0B51DE9C-D416-43D5-81C9-83F8958ADB2E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.10\", \"versionEndExcluding\": \"4.14.44\", \"matchCriteriaId\": \"CC51E40C-0FA7-41BD-ABDD-BA28D2B35761\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"16F59A04-14CF-49E2-9973-645477EA09DA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*\", \"matchCriteriaId\": \"8D305F7A-D159-4716-AB26-5E38BB5CD991\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"B5A6F2F3-4894-4392-8296-3B8DD2679084\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9070C9D8-A14A-467F-8253-33B966C16886\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).\"}, {\"lang\": \"es\", \"value\": \"En el kernel de Linux hasta la versi\\u00f3n 3.2, la funci\\u00f3n rds_message_alloc_sgs() no valida un valor empleado durante la asignaci\\u00f3n de p\\u00e1gina DMA, lo que conduce a una escritura fuera de l\\u00edmites basada en memoria din\\u00e1mica (heap), relacionado con la funci\\u00f3n rds_rdma_extra_size en net/rds/rdma.c\"}]",
      "id": "CVE-2018-5332",
      "lastModified": "2024-11-21T04:08:35.897",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 7.2, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 3.9, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2018-01-11T07:29:00.217",
      "references": "[{\"url\": \"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/102507\", \"source\": \"cve@mitre.org\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:0470\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3617-1/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3617-2/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3617-3/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3619-1/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3619-2/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3620-1/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3620-2/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3632-1/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2018/dsa-4187\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/102507\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:0470\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3617-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3617-2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3617-3/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3619-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3619-2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3620-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3620-2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3632-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2018/dsa-4187\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-787\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2018-5332\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2018-01-11T07:29:00.217\",\"lastModified\":\"2024-11-21T04:08:35.897\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux hasta la versi\u00f3n 3.2, la funci\u00f3n rds_message_alloc_sgs() no valida un valor empleado durante la asignaci\u00f3n de p\u00e1gina DMA, lo que conduce a una escritura fuera de l\u00edmites basada en memoria din\u00e1mica (heap), relacionado con la funci\u00f3n rds_rdma_extra_size en net/rds/rdma.c\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":7.2,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.2.99\",\"matchCriteriaId\":\"87B791D3-1C62-44B7-B4E4-E70E6F183462\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.3\",\"versionEndExcluding\":\"3.16.54\",\"matchCriteriaId\":\"D999C96C-7B24-4418-9FEE-AF2D2539E28E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.17\",\"versionEndExcluding\":\"3.18.92\",\"matchCriteriaId\":\"56D29D8F-12F1-42E4-92EC-4DEC7214BA16\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.19\",\"versionEndExcluding\":\"4.1.50\",\"matchCriteriaId\":\"F71F6650-13B4-486F-80AC-20D871806D44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2\",\"versionEndExcluding\":\"4.4.112\",\"matchCriteriaId\":\"899C6EC3-5202-4A9A-9304-901FA4DECAFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.5\",\"versionEndExcluding\":\"4.9.77\",\"matchCriteriaId\":\"0B51DE9C-D416-43D5-81C9-83F8958ADB2E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.10\",\"versionEndExcluding\":\"4.14.44\",\"matchCriteriaId\":\"CC51E40C-0FA7-41BD-ABDD-BA28D2B35761\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16F59A04-14CF-49E2-9973-645477EA09DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"8D305F7A-D159-4716-AB26-5E38BB5CD991\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"B5A6F2F3-4894-4392-8296-3B8DD2679084\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9070C9D8-A14A-467F-8253-33B966C16886\"}]}]}],\"references\":[{\"url\":\"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/102507\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0470\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3617-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3617-2/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3617-3/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3619-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3619-2/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3620-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3620-2/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3632-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2018/dsa-4187\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/102507\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0470\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3617-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3617-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3617-3/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3619-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3619-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3620-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3620-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3632-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2018/dsa-4187\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
  }
}

CNVD-2018-01385

Vulnerability from cnvd - Published: 2018-01-19

Title

Linux Kernel rds_message_alloc_sgs()本地拒绝服务漏洞

Description

Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。 Linux kernel 4.14.13及之前的版本中的‘rds_message_alloc_sgs()’参数存在本地拒绝服务漏洞，该漏洞源于程序未能验证DMA页面分配过程中使用的值。目前尚无此漏洞的相关信息。

Severity

低

Patch Name

Linux Kernel rds_message_alloc_sgs()本地拒绝服务漏洞的补丁

Patch Description

Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。 Linux kernel及之前的版本中的‘rds_message_alloc_sgs()’参数存在本地拒绝服务漏洞，该漏洞源于程序未能验证DMA页面分配过程中使用的值。目前尚无此漏洞的相关信息。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c

Reference

https://tools.cisco.com/security/center/viewAlert.x?alertId=56445

Impacted products

Name
Linux kernel <=4.14.3

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-5332"
    }
  },
  "description": "Linux kernel\u662f\u7f8e\u56fdLinux\u57fa\u91d1\u4f1a\u53d1\u5e03\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edfLinux\u6240\u4f7f\u7528\u7684\u5185\u6838\u3002\r\n\r\nLinux kernel 4.14.13\u53ca\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u7684\u2018rds_message_alloc_sgs()\u2019\u53c2\u6570\u5b58\u5728\u672c\u5730\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u9a8c\u8bc1DMA\u9875\u9762\u5206\u914d\u8fc7\u7a0b\u4e2d\u4f7f\u7528\u7684\u503c\u3002\u76ee\u524d\u5c1a\u65e0\u6b64\u6f0f\u6d1e\u7684\u76f8\u5173\u4fe1\u606f\u3002",
  "discovererName": "Mohamed Ghannam",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-01385",
  "openTime": "2018-01-19",
  "patchDescription": "Linux kernel\u662f\u7f8e\u56fdLinux\u57fa\u91d1\u4f1a\u53d1\u5e03\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edfLinux\u6240\u4f7f\u7528\u7684\u5185\u6838\u3002\r\n\r\nLinux kernel\u53ca\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u7684\u2018rds_message_alloc_sgs()\u2019\u53c2\u6570\u5b58\u5728\u672c\u5730\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u9a8c\u8bc1DMA\u9875\u9762\u5206\u914d\u8fc7\u7a0b\u4e2d\u4f7f\u7528\u7684\u503c\u3002\u76ee\u524d\u5c1a\u65e0\u6b64\u6f0f\u6d1e\u7684\u76f8\u5173\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Linux Kernel rds_message_alloc_sgs()\u672c\u5730\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Linux kernel \u003c=4.14.3"
  },
  "referenceLink": "https://tools.cisco.com/security/center/viewAlert.x?alertId=56445",
  "serverity": "\u4f4e",
  "submitTime": "2018-01-12",
  "title": "Linux Kernel rds_message_alloc_sgs()\u672c\u5730\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}

FKIE_CVE-2018-5332

Vulnerability from fkie_nvd - Published: 2018-01-11 07:29 - Updated: 2024-11-21 04:08

Severity

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
cve@mitre.org	http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c	Patch, Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/102507	Broken Link, Third Party Advisory, VDB Entry
cve@mitre.org	https://access.redhat.com/errata/RHSA-2018:0470	Third Party Advisory
cve@mitre.org	https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e	Mailing List, Patch, Vendor Advisory
cve@mitre.org	https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c	Patch, Vendor Advisory
cve@mitre.org	https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html	Mailing List, Third Party Advisory
cve@mitre.org	https://usn.ubuntu.com/3617-1/	Third Party Advisory
cve@mitre.org	https://usn.ubuntu.com/3617-2/	Third Party Advisory
cve@mitre.org	https://usn.ubuntu.com/3617-3/	Third Party Advisory
cve@mitre.org	https://usn.ubuntu.com/3619-1/	Third Party Advisory
cve@mitre.org	https://usn.ubuntu.com/3619-2/	Third Party Advisory
cve@mitre.org	https://usn.ubuntu.com/3620-1/	Third Party Advisory
cve@mitre.org	https://usn.ubuntu.com/3620-2/	Third Party Advisory
cve@mitre.org	https://usn.ubuntu.com/3632-1/	Third Party Advisory
cve@mitre.org	https://www.debian.org/security/2018/dsa-4187	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/102507	Broken Link, Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2018:0470	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e	Mailing List, Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://usn.ubuntu.com/3617-1/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://usn.ubuntu.com/3617-2/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://usn.ubuntu.com/3617-3/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://usn.ubuntu.com/3619-1/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://usn.ubuntu.com/3619-2/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://usn.ubuntu.com/3620-1/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://usn.ubuntu.com/3620-2/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://usn.ubuntu.com/3632-1/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.debian.org/security/2018/dsa-4187	Third Party Advisory

Impacted products

Vendor	Product	Version
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
debian	debian_linux	7.0
debian	debian_linux	8.0
canonical	ubuntu_linux	12.04
canonical	ubuntu_linux	14.04
canonical	ubuntu_linux	16.04
canonical	ubuntu_linux	17.10

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "87B791D3-1C62-44B7-B4E4-E70E6F183462",
              "versionEndExcluding": "3.2.99",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D999C96C-7B24-4418-9FEE-AF2D2539E28E",
              "versionEndExcluding": "3.16.54",
              "versionStartIncluding": "3.3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "56D29D8F-12F1-42E4-92EC-4DEC7214BA16",
              "versionEndExcluding": "3.18.92",
              "versionStartIncluding": "3.17",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F71F6650-13B4-486F-80AC-20D871806D44",
              "versionEndExcluding": "4.1.50",
              "versionStartIncluding": "3.19",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "899C6EC3-5202-4A9A-9304-901FA4DECAFF",
              "versionEndExcluding": "4.4.112",
              "versionStartIncluding": "4.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0B51DE9C-D416-43D5-81C9-83F8958ADB2E",
              "versionEndExcluding": "4.9.77",
              "versionStartIncluding": "4.5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "CC51E40C-0FA7-41BD-ABDD-BA28D2B35761",
              "versionEndExcluding": "4.14.44",
              "versionStartIncluding": "4.10",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*",
              "matchCriteriaId": "8D305F7A-D159-4716-AB26-5E38BB5CD991",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
              "matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
              "matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "9070C9D8-A14A-467F-8253-33B966C16886",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c)."
    },
    {
      "lang": "es",
      "value": "En el kernel de Linux hasta la versi\u00f3n 3.2, la funci\u00f3n rds_message_alloc_sgs() no valida un valor empleado durante la asignaci\u00f3n de p\u00e1gina DMA, lo que conduce a una escritura fuera de l\u00edmites basada en memoria din\u00e1mica (heap), relacionado con la funci\u00f3n rds_rdma_extra_size en net/rds/rdma.c"
    }
  ],
  "id": "CVE-2018-5332",
  "lastModified": "2024-11-21T04:08:35.897",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.2,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2018-01-11T07:29:00.217",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/102507"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2018:0470"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Mailing List",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3617-1/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3617-2/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3617-3/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3619-1/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3619-2/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3620-1/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3620-2/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3632-1/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://www.debian.org/security/2018/dsa-4187"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/102507"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2018:0470"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3617-1/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3617-2/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3617-3/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3619-1/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3619-2/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3620-1/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3620-2/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://usn.ubuntu.com/3632-1/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://www.debian.org/security/2018/dsa-4187"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-MJF9-Q9GC-82XC

Vulnerability from github – Published: 2022-05-13 01:12 – Updated: 2022-05-13 01:12

Details

Severity

7.8 (High)


                  
                    CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2018-5332"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-787"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2018-01-11T07:29:00Z",
    "severity": "HIGH"
  },
  "details": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).",
  "id": "GHSA-mjf9-q9gc-82xc",
  "modified": "2022-05-13T01:12:13Z",
  "published": "2022-05-13T01:12:13Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5332"
    },
    {
      "type": "WEB",
      "url": "https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2018:0470"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e"
    },
    {
      "type": "WEB",
      "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html"
    },
    {
      "type": "WEB",
      "url": "https://usn.ubuntu.com/3617-1"
    },
    {
      "type": "WEB",
      "url": "https://usn.ubuntu.com/3617-2"
    },
    {
      "type": "WEB",
      "url": "https://usn.ubuntu.com/3617-3"
    },
    {
      "type": "WEB",
      "url": "https://usn.ubuntu.com/3619-1"
    },
    {
      "type": "WEB",
      "url": "https://usn.ubuntu.com/3619-2"
    },
    {
      "type": "WEB",
      "url": "https://usn.ubuntu.com/3620-1"
    },
    {
      "type": "WEB",
      "url": "https://usn.ubuntu.com/3620-2"
    },
    {
      "type": "WEB",
      "url": "https://usn.ubuntu.com/3632-1"
    },
    {
      "type": "WEB",
      "url": "https://www.debian.org/security/2018/dsa-4187"
    },
    {
      "type": "WEB",
      "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/102507"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2018-5332

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2018-5332

Aliases

CVE-2018-5332

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2018-5332",
    "description": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).",
    "id": "GSD-2018-5332",
    "references": [
      "https://www.suse.com/security/cve/CVE-2018-5332.html",
      "https://www.debian.org/security/2018/dsa-4187",
      "https://access.redhat.com/errata/RHSA-2018:0470",
      "https://ubuntu.com/security/CVE-2018-5332",
      "https://linux.oracle.com/cve/CVE-2018-5332.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2018-5332"
      ],
      "details": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).",
      "id": "GSD-2018-5332",
      "modified": "2023-12-13T01:22:39.788582Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2018-5332",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c)."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c",
            "refsource": "CONFIRM",
            "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c"
          },
          {
            "name": "DSA-4187",
            "refsource": "DEBIAN",
            "url": "https://www.debian.org/security/2018/dsa-4187"
          },
          {
            "name": "https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c",
            "refsource": "CONFIRM",
            "url": "https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c"
          },
          {
            "name": "USN-3617-1",
            "refsource": "UBUNTU",
            "url": "https://usn.ubuntu.com/3617-1/"
          },
          {
            "name": "USN-3619-2",
            "refsource": "UBUNTU",
            "url": "https://usn.ubuntu.com/3619-2/"
          },
          {
            "name": "USN-3617-3",
            "refsource": "UBUNTU",
            "url": "https://usn.ubuntu.com/3617-3/"
          },
          {
            "name": "USN-3632-1",
            "refsource": "UBUNTU",
            "url": "https://usn.ubuntu.com/3632-1/"
          },
          {
            "name": "USN-3620-2",
            "refsource": "UBUNTU",
            "url": "https://usn.ubuntu.com/3620-2/"
          },
          {
            "name": "102507",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/102507"
          },
          {
            "name": "RHSA-2018:0470",
            "refsource": "REDHAT",
            "url": "https://access.redhat.com/errata/RHSA-2018:0470"
          },
          {
            "name": "[debian-lts-announce] 20180502 [SECURITY] [DLA 1369-1] linux security update",
            "refsource": "MLIST",
            "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html"
          },
          {
            "name": "USN-3617-2",
            "refsource": "UBUNTU",
            "url": "https://usn.ubuntu.com/3617-2/"
          },
          {
            "name": "USN-3620-1",
            "refsource": "UBUNTU",
            "url": "https://usn.ubuntu.com/3620-1/"
          },
          {
            "name": "USN-3619-1",
            "refsource": "UBUNTU",
            "url": "https://usn.ubuntu.com/3619-1/"
          },
          {
            "name": "https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e",
            "refsource": "CONFIRM",
            "url": "https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "4.1.50",
                "versionStartIncluding": "3.19",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "3.2.99",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "3.16.54",
                "versionStartIncluding": "3.3",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "3.18.92",
                "versionStartIncluding": "3.17",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "4.4.112",
                "versionStartIncluding": "4.2",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "4.9.77",
                "versionStartIncluding": "4.5",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "4.14.44",
                "versionStartIncluding": "4.10",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2018-5332"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c)."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-787"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "https://github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c"
            },
            {
              "name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c"
            },
            {
              "name": "102507",
              "refsource": "BID",
              "tags": [
                "Broken Link",
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securityfocus.com/bid/102507"
            },
            {
              "name": "RHSA-2018:0470",
              "refsource": "REDHAT",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://access.redhat.com/errata/RHSA-2018:0470"
            },
            {
              "name": "USN-3617-2",
              "refsource": "UBUNTU",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://usn.ubuntu.com/3617-2/"
            },
            {
              "name": "USN-3617-1",
              "refsource": "UBUNTU",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://usn.ubuntu.com/3617-1/"
            },
            {
              "name": "USN-3620-2",
              "refsource": "UBUNTU",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://usn.ubuntu.com/3620-2/"
            },
            {
              "name": "USN-3620-1",
              "refsource": "UBUNTU",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://usn.ubuntu.com/3620-1/"
            },
            {
              "name": "USN-3619-1",
              "refsource": "UBUNTU",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://usn.ubuntu.com/3619-1/"
            },
            {
              "name": "USN-3617-3",
              "refsource": "UBUNTU",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://usn.ubuntu.com/3617-3/"
            },
            {
              "name": "USN-3619-2",
              "refsource": "UBUNTU",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://usn.ubuntu.com/3619-2/"
            },
            {
              "name": "USN-3632-1",
              "refsource": "UBUNTU",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://usn.ubuntu.com/3632-1/"
            },
            {
              "name": "DSA-4187",
              "refsource": "DEBIAN",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://www.debian.org/security/2018/dsa-4187"
            },
            {
              "name": "[debian-lts-announce] 20180502 [SECURITY] [DLA 1369-1] linux security update",
              "refsource": "MLIST",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2018/05/msg00000.html"
            },
            {
              "name": "https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e",
              "refsource": "CONFIRM",
              "tags": [
                "Mailing List",
                "Patch",
                "Vendor Advisory"
              ],
              "url": "https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 1.8,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2023-02-24T18:43Z",
      "publishedDate": "2018-01-11T07:29Z"
    }
  }
}

OPENSUSE-SU-2024:10728-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

kernel-devel-5.14.6-1.4 on GA media

Severity

Moderate

Notes

Title of the patch: kernel-devel-5.14.6-1.4 on GA media

Description of the patch: These are all security issues fixed in the kernel-devel-5.14.6-1.4 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-10728

CVE-2017-1000251

8.8 (High)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-12153

4.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-13080

8.1 (High)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-14051

6.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-15129

6.1 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-15265

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16536

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16537

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16645

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16646

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16647

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16648

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16995

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16996

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17448

5.7 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17449

4.3 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17450

4.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17852

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17853

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17854

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17855

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17856

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17857

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17862

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-5123

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5715

7.1 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5753

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5754

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-7541

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-7542

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-8824

8.4 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-8831

6.7 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-1000004

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-10322

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-10323

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-1068

8.4 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-1118

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-12232

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-12714

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-13053

3.3 (Low)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-18710

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-19824

6.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-5332

3.6 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-5333

2.9 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-8043

0 (None)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-8087

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-8822

6.4 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-10207

5.3 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-11477

8.2 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-11478

5.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-11479

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-14615

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-14814

7.5 (High)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-14896

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-15030

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15031

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15098

5.2 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15099

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15290

5.2 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15504

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-15902

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-16231

4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-16232

4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-16234

4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-17133

8.8 (High)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-17666

5.4 (Medium)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18808

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18812

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18813

4.3 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19252

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19332

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19338

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3016

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3846

7.5 (High)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-3882

4.7 (Medium)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3887

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-6974

7.8 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-7221

7.5 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-7222

2.8 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-8564

4.2 (Medium)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-8912

7.8 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-9500

5 (Medium)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10135

5 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10766

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10767

5.9 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10768

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-12351

7.5 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-12352

3.1 (Low)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-14331

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-14386

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-24586

4.7 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-24587

4.2 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-24588

6.5 (Medium)


                        
                          CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-25639

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-25656

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-25668

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-26141

4.2 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-2732

3.2 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2020-29660

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-29661

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-8648

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-8694

5.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-23133

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-26708

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-28971

5.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-32606

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-33909

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3483

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-3489

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3490

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3491

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3640

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3653

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3656

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3744

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-3753

2.9 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2021-37576

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3759

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-38166

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

References

537 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2017-1000251/	self
https://www.suse.com/security/cve/CVE-2017-12153/	self
https://www.suse.com/security/cve/CVE-2017-13080/	self
https://www.suse.com/security/cve/CVE-2017-14051/	self
https://www.suse.com/security/cve/CVE-2017-15129/	self
https://www.suse.com/security/cve/CVE-2017-15265/	self
https://www.suse.com/security/cve/CVE-2017-16536/	self
https://www.suse.com/security/cve/CVE-2017-16537/	self
https://www.suse.com/security/cve/CVE-2017-16645/	self
https://www.suse.com/security/cve/CVE-2017-16646/	self
https://www.suse.com/security/cve/CVE-2017-16647/	self
https://www.suse.com/security/cve/CVE-2017-16648/	self
https://www.suse.com/security/cve/CVE-2017-16995/	self
https://www.suse.com/security/cve/CVE-2017-16996/	self
https://www.suse.com/security/cve/CVE-2017-17448/	self
https://www.suse.com/security/cve/CVE-2017-17449/	self
https://www.suse.com/security/cve/CVE-2017-17450/	self
https://www.suse.com/security/cve/CVE-2017-17852/	self
https://www.suse.com/security/cve/CVE-2017-17853/	self
https://www.suse.com/security/cve/CVE-2017-17854/	self
https://www.suse.com/security/cve/CVE-2017-17855/	self
https://www.suse.com/security/cve/CVE-2017-17856/	self
https://www.suse.com/security/cve/CVE-2017-17857/	self
https://www.suse.com/security/cve/CVE-2017-17862/	self
https://www.suse.com/security/cve/CVE-2017-5123/	self
https://www.suse.com/security/cve/CVE-2017-5715/	self
https://www.suse.com/security/cve/CVE-2017-5753/	self
https://www.suse.com/security/cve/CVE-2017-5754/	self
https://www.suse.com/security/cve/CVE-2017-7541/	self
https://www.suse.com/security/cve/CVE-2017-7542/	self
https://www.suse.com/security/cve/CVE-2017-8824/	self
https://www.suse.com/security/cve/CVE-2017-8831/	self
https://www.suse.com/security/cve/CVE-2018-1000004/	self
https://www.suse.com/security/cve/CVE-2018-10322/	self
https://www.suse.com/security/cve/CVE-2018-10323/	self
https://www.suse.com/security/cve/CVE-2018-1068/	self
https://www.suse.com/security/cve/CVE-2018-1118/	self
https://www.suse.com/security/cve/CVE-2018-12232/	self
https://www.suse.com/security/cve/CVE-2018-12714/	self
https://www.suse.com/security/cve/CVE-2018-13053/	self
https://www.suse.com/security/cve/CVE-2018-18710/	self
https://www.suse.com/security/cve/CVE-2018-19824/	self
https://www.suse.com/security/cve/CVE-2018-5332/	self
https://www.suse.com/security/cve/CVE-2018-5333/	self
https://www.suse.com/security/cve/CVE-2018-8043/	self
https://www.suse.com/security/cve/CVE-2018-8087/	self
https://www.suse.com/security/cve/CVE-2018-8822/	self
https://www.suse.com/security/cve/CVE-2019-10207/	self
https://www.suse.com/security/cve/CVE-2019-11477/	self
https://www.suse.com/security/cve/CVE-2019-11478/	self
https://www.suse.com/security/cve/CVE-2019-11479/	self
https://www.suse.com/security/cve/CVE-2019-14615/	self
https://www.suse.com/security/cve/CVE-2019-14814/	self
https://www.suse.com/security/cve/CVE-2019-14896/	self
https://www.suse.com/security/cve/CVE-2019-15030/	self
https://www.suse.com/security/cve/CVE-2019-15031/	self
https://www.suse.com/security/cve/CVE-2019-15098/	self
https://www.suse.com/security/cve/CVE-2019-15099/	self
https://www.suse.com/security/cve/CVE-2019-15290/	self
https://www.suse.com/security/cve/CVE-2019-15504/	self
https://www.suse.com/security/cve/CVE-2019-15902/	self
https://www.suse.com/security/cve/CVE-2019-16231/	self
https://www.suse.com/security/cve/CVE-2019-16232/	self
https://www.suse.com/security/cve/CVE-2019-16234/	self
https://www.suse.com/security/cve/CVE-2019-17133/	self
https://www.suse.com/security/cve/CVE-2019-17666/	self
https://www.suse.com/security/cve/CVE-2019-18808/	self
https://www.suse.com/security/cve/CVE-2019-18812/	self
https://www.suse.com/security/cve/CVE-2019-18813/	self
https://www.suse.com/security/cve/CVE-2019-19252/	self
https://www.suse.com/security/cve/CVE-2019-19332/	self
https://www.suse.com/security/cve/CVE-2019-19338/	self
https://www.suse.com/security/cve/CVE-2019-3016/	self
https://www.suse.com/security/cve/CVE-2019-3846/	self
https://www.suse.com/security/cve/CVE-2019-3882/	self
https://www.suse.com/security/cve/CVE-2019-3887/	self
https://www.suse.com/security/cve/CVE-2019-6974/	self
https://www.suse.com/security/cve/CVE-2019-7221/	self
https://www.suse.com/security/cve/CVE-2019-7222/	self
https://www.suse.com/security/cve/CVE-2019-8564/	self
https://www.suse.com/security/cve/CVE-2019-8912/	self
https://www.suse.com/security/cve/CVE-2019-9500/	self
https://www.suse.com/security/cve/CVE-2020-10135/	self
https://www.suse.com/security/cve/CVE-2020-10766/	self
https://www.suse.com/security/cve/CVE-2020-10767/	self
https://www.suse.com/security/cve/CVE-2020-10768/	self
https://www.suse.com/security/cve/CVE-2020-12351/	self
https://www.suse.com/security/cve/CVE-2020-12352/	self
https://www.suse.com/security/cve/CVE-2020-14331/	self
https://www.suse.com/security/cve/CVE-2020-14386/	self
https://www.suse.com/security/cve/CVE-2020-24586/	self
https://www.suse.com/security/cve/CVE-2020-24587/	self
https://www.suse.com/security/cve/CVE-2020-24588/	self
https://www.suse.com/security/cve/CVE-2020-25639/	self
https://www.suse.com/security/cve/CVE-2020-25656/	self
https://www.suse.com/security/cve/CVE-2020-25668/	self
https://www.suse.com/security/cve/CVE-2020-26141/	self
https://www.suse.com/security/cve/CVE-2020-2732/	self
https://www.suse.com/security/cve/CVE-2020-29660/	self
https://www.suse.com/security/cve/CVE-2020-29661/	self
https://www.suse.com/security/cve/CVE-2020-8648/	self
https://www.suse.com/security/cve/CVE-2020-8694/	self
https://www.suse.com/security/cve/CVE-2021-23133/	self
https://www.suse.com/security/cve/CVE-2021-26708/	self
https://www.suse.com/security/cve/CVE-2021-28971/	self
https://www.suse.com/security/cve/CVE-2021-32606/	self
https://www.suse.com/security/cve/CVE-2021-33909/	self
https://www.suse.com/security/cve/CVE-2021-3483/	self
https://www.suse.com/security/cve/CVE-2021-3489/	self
https://www.suse.com/security/cve/CVE-2021-3490/	self
https://www.suse.com/security/cve/CVE-2021-3491/	self
https://www.suse.com/security/cve/CVE-2021-3640/	self
https://www.suse.com/security/cve/CVE-2021-3653/	self
https://www.suse.com/security/cve/CVE-2021-3656/	self
https://www.suse.com/security/cve/CVE-2021-3744/	self
https://www.suse.com/security/cve/CVE-2021-3753/	self
https://www.suse.com/security/cve/CVE-2021-37576/	self
https://www.suse.com/security/cve/CVE-2021-3759/	self
https://www.suse.com/security/cve/CVE-2021-38166/	self
https://www.suse.com/security/cve/CVE-2017-1000251	external
https://bugzilla.suse.com/1057389	external
https://bugzilla.suse.com/1057950	external
https://bugzilla.suse.com/1070535	external
https://bugzilla.suse.com/1072117	external
https://bugzilla.suse.com/1072162	external
https://bugzilla.suse.com/1120758	external
https://www.suse.com/security/cve/CVE-2017-12153	external
https://bugzilla.suse.com/1058410	external
https://bugzilla.suse.com/1058624	external
https://www.suse.com/security/cve/CVE-2017-13080	external
https://bugzilla.suse.com/1056061	external
https://bugzilla.suse.com/1063479	external
https://bugzilla.suse.com/1063667	external
https://bugzilla.suse.com/1063671	external
https://bugzilla.suse.com/1066295	external
https://bugzilla.suse.com/1105108	external
https://bugzilla.suse.com/1178872	external
https://bugzilla.suse.com/1179588	external
https://www.suse.com/security/cve/CVE-2017-14051	external
https://bugzilla.suse.com/1056588	external
https://www.suse.com/security/cve/CVE-2017-15129	external
https://bugzilla.suse.com/1074839	external
https://www.suse.com/security/cve/CVE-2017-15265	external
https://bugzilla.suse.com/1062520	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2017-16536	external
https://bugzilla.suse.com/1066606	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16537	external
https://bugzilla.suse.com/1066573	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16645	external
https://bugzilla.suse.com/1067132	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16646	external
https://bugzilla.suse.com/1067105	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16647	external
https://bugzilla.suse.com/1067102	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16648	external
https://bugzilla.suse.com/1067087	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16995	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-16996	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17448	external
https://bugzilla.suse.com/1071693	external
https://www.suse.com/security/cve/CVE-2017-17449	external
https://bugzilla.suse.com/1071694	external
https://www.suse.com/security/cve/CVE-2017-17450	external
https://bugzilla.suse.com/1071695	external
https://bugzilla.suse.com/1074033	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2017-17852	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17853	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17854	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17855	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17856	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17857	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17862	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-5123	external
https://bugzilla.suse.com/1062473	external
https://bugzilla.suse.com/1122971	external
https://www.suse.com/security/cve/CVE-2017-5715	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1074741	external
https://bugzilla.suse.com/1074919	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075007	external
https://bugzilla.suse.com/1075262	external
https://bugzilla.suse.com/1075419	external
https://bugzilla.suse.com/1076115	external
https://bugzilla.suse.com/1076372	external
https://bugzilla.suse.com/1076606	external
https://bugzilla.suse.com/1078353	external
https://bugzilla.suse.com/1080039	external
https://bugzilla.suse.com/1087887	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1088147	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1095735	external
https://bugzilla.suse.com/1102517	external
https://bugzilla.suse.com/1105108	external
https://bugzilla.suse.com/1126516	external
https://bugzilla.suse.com/1173489	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201457	external
https://bugzilla.suse.com/1201877	external
https://bugzilla.suse.com/1203236	external
https://www.suse.com/security/cve/CVE-2017-5753	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075419	external
https://bugzilla.suse.com/1075748	external
https://bugzilla.suse.com/1080039	external
https://bugzilla.suse.com/1087084	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1136865	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201877	external
https://bugzilla.suse.com/1209547	external
https://www.suse.com/security/cve/CVE-2017-5754	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075008	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1115045	external
https://bugzilla.suse.com/1136865	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201877	external
https://www.suse.com/security/cve/CVE-2017-7541	external
https://bugzilla.suse.com/1049645	external
https://www.suse.com/security/cve/CVE-2017-7542	external
https://bugzilla.suse.com/1049882	external
https://bugzilla.suse.com/1061936	external
https://www.suse.com/security/cve/CVE-2017-8824	external
https://bugzilla.suse.com/1070771	external
https://bugzilla.suse.com/1076734	external
https://bugzilla.suse.com/1092904	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2017-8831	external
https://bugzilla.suse.com/1037994	external
https://bugzilla.suse.com/1061936	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-1000004	external
https://bugzilla.suse.com/1076017	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2018-10322	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1090749	external
https://www.suse.com/security/cve/CVE-2018-10323	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1090717	external
https://www.suse.com/security/cve/CVE-2018-1068	external
https://bugzilla.suse.com/1085107	external
https://bugzilla.suse.com/1085114	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1123903	external
https://www.suse.com/security/cve/CVE-2018-1118	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1092472	external
https://www.suse.com/security/cve/CVE-2018-12232	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1097593	external
https://bugzilla.suse.com/1125907	external
https://bugzilla.suse.com/1127757	external
https://www.suse.com/security/cve/CVE-2018-12714	external
https://bugzilla.suse.com/1098933	external
https://www.suse.com/security/cve/CVE-2018-13053	external
https://bugzilla.suse.com/1099924	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-18710	external
https://bugzilla.suse.com/1113751	external
https://www.suse.com/security/cve/CVE-2018-19824	external
https://bugzilla.suse.com/1118152	external
https://www.suse.com/security/cve/CVE-2018-5332	external
https://bugzilla.suse.com/1075621	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-5333	external
https://bugzilla.suse.com/1075617	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2018-8043	external
https://bugzilla.suse.com/1084829	external
https://www.suse.com/security/cve/CVE-2018-8087	external
https://bugzilla.suse.com/1085053	external
https://www.suse.com/security/cve/CVE-2018-8822	external
https://bugzilla.suse.com/1086162	external
https://bugzilla.suse.com/1090404	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2019-10207	external
https://bugzilla.suse.com/1123959	external
https://bugzilla.suse.com/1142857	external
https://www.suse.com/security/cve/CVE-2019-11477	external
https://bugzilla.suse.com/1132686	external
https://bugzilla.suse.com/1137586	external
https://bugzilla.suse.com/1142129	external
https://bugzilla.suse.com/1153242	external
https://www.suse.com/security/cve/CVE-2019-11478	external
https://bugzilla.suse.com/1132686	external
https://bugzilla.suse.com/1137586	external
https://bugzilla.suse.com/1142129	external
https://bugzilla.suse.com/1143542	external
https://www.suse.com/security/cve/CVE-2019-11479	external
https://bugzilla.suse.com/1132686	external
https://bugzilla.suse.com/1137586	external
https://bugzilla.suse.com/1142129	external
https://bugzilla.suse.com/1143542	external
https://www.suse.com/security/cve/CVE-2019-14615	external
https://bugzilla.suse.com/1160195	external
https://bugzilla.suse.com/1165881	external
https://www.suse.com/security/cve/CVE-2019-14814	external
https://bugzilla.suse.com/1146512	external
https://bugzilla.suse.com/1173664	external
https://bugzilla.suse.com/1173665	external
https://www.suse.com/security/cve/CVE-2019-14896	external
https://bugzilla.suse.com/1157157	external
https://bugzilla.suse.com/1160468	external
https://www.suse.com/security/cve/CVE-2019-15030	external
https://bugzilla.suse.com/1149713	external
https://www.suse.com/security/cve/CVE-2019-15031	external
https://bugzilla.suse.com/1149713	external
https://www.suse.com/security/cve/CVE-2019-15098	external
https://bugzilla.suse.com/1146378	external
https://bugzilla.suse.com/1146543	external
https://www.suse.com/security/cve/CVE-2019-15099	external
https://bugzilla.suse.com/1146368	external
https://www.suse.com/security/cve/CVE-2019-15290	external
https://bugzilla.suse.com/1146378	external
https://bugzilla.suse.com/1146519	external
https://bugzilla.suse.com/1146543	external
https://bugzilla.suse.com/1158381	external
https://bugzilla.suse.com/1158834	external
https://www.suse.com/security/cve/CVE-2019-15504	external
https://bugzilla.suse.com/1147116	external
https://bugzilla.suse.com/1185852	external
https://www.suse.com/security/cve/CVE-2019-15902	external
https://bugzilla.suse.com/1149376	external
https://bugzilla.suse.com/1155131	external
https://www.suse.com/security/cve/CVE-2019-16231	external
https://bugzilla.suse.com/1150466	external
https://www.suse.com/security/cve/CVE-2019-16232	external
https://bugzilla.suse.com/1150465	external
https://www.suse.com/security/cve/CVE-2019-16234	external
https://bugzilla.suse.com/1150452	external
https://www.suse.com/security/cve/CVE-2019-17133	external
https://bugzilla.suse.com/1153158	external
https://bugzilla.suse.com/1153161	external
https://www.suse.com/security/cve/CVE-2019-17666	external
https://bugzilla.suse.com/1154372	external
https://www.suse.com/security/cve/CVE-2019-18808	external
https://bugzilla.suse.com/1156259	external
https://bugzilla.suse.com/1189884	external
https://bugzilla.suse.com/1190534	external
https://www.suse.com/security/cve/CVE-2019-18812	external
https://bugzilla.suse.com/1156277	external
https://www.suse.com/security/cve/CVE-2019-18813	external
https://bugzilla.suse.com/1156278	external
https://www.suse.com/security/cve/CVE-2019-19252	external
https://bugzilla.suse.com/1157813	external
https://www.suse.com/security/cve/CVE-2019-19332	external
https://bugzilla.suse.com/1158827	external
https://www.suse.com/security/cve/CVE-2019-19338	external
https://bugzilla.suse.com/1158954	external
https://www.suse.com/security/cve/CVE-2019-3016	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1161154	external
https://www.suse.com/security/cve/CVE-2019-3846	external
https://bugzilla.suse.com/1136424	external
https://bugzilla.suse.com/1136446	external
https://bugzilla.suse.com/1156330	external
https://www.suse.com/security/cve/CVE-2019-3882	external
https://bugzilla.suse.com/1131416	external
https://bugzilla.suse.com/1131427	external
https://bugzilla.suse.com/1133319	external
https://www.suse.com/security/cve/CVE-2019-3887	external
https://bugzilla.suse.com/1131800	external
https://www.suse.com/security/cve/CVE-2019-6974	external
https://bugzilla.suse.com/1124728	external
https://bugzilla.suse.com/1124729	external
https://www.suse.com/security/cve/CVE-2019-7221	external
https://bugzilla.suse.com/1124732	external
https://bugzilla.suse.com/1124734	external
https://www.suse.com/security/cve/CVE-2019-7222	external
https://bugzilla.suse.com/1124735	external
https://www.suse.com/security/cve/CVE-2019-8564	external
https://bugzilla.suse.com/1132673	external
https://bugzilla.suse.com/1132828	external
https://www.suse.com/security/cve/CVE-2019-8912	external
https://bugzilla.suse.com/1125907	external
https://bugzilla.suse.com/1126284	external
https://www.suse.com/security/cve/CVE-2019-9500	external
https://bugzilla.suse.com/1132681	external
https://www.suse.com/security/cve/CVE-2020-10135	external
https://bugzilla.suse.com/1171988	external
https://www.suse.com/security/cve/CVE-2020-10766	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1172781	external
https://www.suse.com/security/cve/CVE-2020-10767	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1172782	external
https://www.suse.com/security/cve/CVE-2020-10768	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1172783	external
https://www.suse.com/security/cve/CVE-2020-12351	external
https://bugzilla.suse.com/1177724	external
https://bugzilla.suse.com/1177729	external
https://bugzilla.suse.com/1178397	external
https://www.suse.com/security/cve/CVE-2020-12352	external
https://bugzilla.suse.com/1177725	external
https://bugzilla.suse.com/1178398	external
https://www.suse.com/security/cve/CVE-2020-14331	external
https://bugzilla.suse.com/1174205	external
https://bugzilla.suse.com/1174247	external
https://www.suse.com/security/cve/CVE-2020-14386	external
https://bugzilla.suse.com/1176069	external
https://bugzilla.suse.com/1176072	external
https://www.suse.com/security/cve/CVE-2020-24586	external
https://bugzilla.suse.com/1185859	external
https://bugzilla.suse.com/1192868	external
https://www.suse.com/security/cve/CVE-2020-24587	external
https://bugzilla.suse.com/1185859	external
https://bugzilla.suse.com/1185862	external
https://bugzilla.suse.com/1192868	external
https://www.suse.com/security/cve/CVE-2020-24588	external
https://bugzilla.suse.com/1185861	external
https://bugzilla.suse.com/1192868	external
https://bugzilla.suse.com/1199701	external
https://www.suse.com/security/cve/CVE-2020-25639	external
https://bugzilla.suse.com/1176846	external
https://www.suse.com/security/cve/CVE-2020-25656	external
https://bugzilla.suse.com/1177766	external
https://www.suse.com/security/cve/CVE-2020-25668	external
https://bugzilla.suse.com/1178123	external
https://bugzilla.suse.com/1178622	external
https://bugzilla.suse.com/1196914	external
https://www.suse.com/security/cve/CVE-2020-26141	external
https://bugzilla.suse.com/1185987	external
https://www.suse.com/security/cve/CVE-2020-2732	external
https://bugzilla.suse.com/1163971	external
https://www.suse.com/security/cve/CVE-2020-29660	external
https://bugzilla.suse.com/1179745	external
https://bugzilla.suse.com/1179877	external
https://www.suse.com/security/cve/CVE-2020-29661	external
https://bugzilla.suse.com/1179745	external
https://bugzilla.suse.com/1179877	external
https://bugzilla.suse.com/1214268	external
https://bugzilla.suse.com/1218966	external
https://www.suse.com/security/cve/CVE-2020-8648	external
https://bugzilla.suse.com/1162928	external
https://www.suse.com/security/cve/CVE-2020-8694	external
https://bugzilla.suse.com/1170415	external
https://bugzilla.suse.com/1170446	external
https://bugzilla.suse.com/1178591	external
https://bugzilla.suse.com/1178700	external
https://bugzilla.suse.com/1179661	external
https://www.suse.com/security/cve/CVE-2021-23133	external
https://bugzilla.suse.com/1184675	external
https://bugzilla.suse.com/1185901	external
https://www.suse.com/security/cve/CVE-2021-26708	external
https://bugzilla.suse.com/1181806	external
https://bugzilla.suse.com/1183298	external
https://www.suse.com/security/cve/CVE-2021-28971	external
https://bugzilla.suse.com/1184196	external
https://www.suse.com/security/cve/CVE-2021-32606	external
https://bugzilla.suse.com/1185953	external
https://www.suse.com/security/cve/CVE-2021-33909	external
https://bugzilla.suse.com/1188062	external
https://bugzilla.suse.com/1188063	external
https://bugzilla.suse.com/1188257	external
https://bugzilla.suse.com/1189302	external
https://bugzilla.suse.com/1190859	external
https://www.suse.com/security/cve/CVE-2021-3483	external
https://bugzilla.suse.com/1184393	external
https://www.suse.com/security/cve/CVE-2021-3489	external
https://bugzilla.suse.com/1185640	external
https://bugzilla.suse.com/1185856	external
https://www.suse.com/security/cve/CVE-2021-3490	external
https://bugzilla.suse.com/1185641	external
https://bugzilla.suse.com/1185796	external
https://www.suse.com/security/cve/CVE-2021-3491	external
https://bugzilla.suse.com/1185642	external
https://bugzilla.suse.com/1187090	external
https://www.suse.com/security/cve/CVE-2021-3640	external
https://bugzilla.suse.com/1188172	external
https://bugzilla.suse.com/1188613	external
https://bugzilla.suse.com/1191530	external
https://bugzilla.suse.com/1196810	external
https://bugzilla.suse.com/1196914	external
https://www.suse.com/security/cve/CVE-2021-3653	external
https://bugzilla.suse.com/1189399	external
https://bugzilla.suse.com/1189420	external
https://bugzilla.suse.com/1196914	external
https://www.suse.com/security/cve/CVE-2021-3656	external
https://bugzilla.suse.com/1189400	external
https://bugzilla.suse.com/1189418	external
https://www.suse.com/security/cve/CVE-2021-3744	external
https://bugzilla.suse.com/1189884	external
https://bugzilla.suse.com/1190534	external
https://www.suse.com/security/cve/CVE-2021-3753	external
https://bugzilla.suse.com/1190025	external
https://www.suse.com/security/cve/CVE-2021-37576	external
https://bugzilla.suse.com/1188838	external
https://bugzilla.suse.com/1188842	external
https://bugzilla.suse.com/1190276	external
https://www.suse.com/security/cve/CVE-2021-3759	external
https://bugzilla.suse.com/1190115	external
https://www.suse.com/security/cve/CVE-2021-38166	external
https://bugzilla.suse.com/1189233	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "kernel-devel-5.14.6-1.4 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the kernel-devel-5.14.6-1.4 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-10728",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10728-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-1000251 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-1000251/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-12153 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-12153/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-13080 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-13080/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-14051 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-14051/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15129 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15129/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15265 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15265/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16536 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16536/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16537 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16537/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16645 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16645/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16646 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16646/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16647 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16647/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16648 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16648/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16995 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16995/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16996 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16996/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17448 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17448/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17449 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17449/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17450 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17450/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17852 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17852/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17853 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17853/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17854 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17854/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17855 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17855/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17856 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17856/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17857 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17857/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17862 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17862/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5123 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5123/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5715 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5715/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5753 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5753/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5754 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5754/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7541 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7541/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7542 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7542/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-8824 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-8824/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-8831 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-8831/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1000004 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1000004/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10322 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10322/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10323 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10323/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1068 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1068/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1118 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1118/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-12232 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-12232/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-12714 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-12714/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-13053 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-13053/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18710 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18710/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-19824 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-19824/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5332 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5332/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5333 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5333/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-8043 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-8043/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-8087 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-8087/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-8822 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-8822/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-10207 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-10207/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-11477 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-11477/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-11478 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-11478/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-11479 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-11479/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14615 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14615/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14814 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14814/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14896 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14896/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15030 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15030/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15031 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15031/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15098 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15098/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15099 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15099/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15290 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15290/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15504 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15504/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15902 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15902/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16231 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16231/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16232 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16232/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16234 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16234/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-17133 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-17133/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-17666 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-17666/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18808 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18808/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18812 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18812/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18813 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18813/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19252 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19252/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19332 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19332/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19338 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19338/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3016 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3016/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3846 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3846/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3882 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3882/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3887 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3887/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-6974 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-6974/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-7221 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-7221/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-7222 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-7222/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-8564 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-8564/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-8912 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-8912/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-9500 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-9500/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10135 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10135/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10766 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10766/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10767 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10767/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10768 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10768/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-12351 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-12351/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-12352 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-12352/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-14331 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-14331/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-14386 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-14386/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-24586 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-24586/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-24587 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-24587/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-24588 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-24588/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25639 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25639/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25656 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25656/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25668 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25668/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-26141 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-26141/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-2732 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-2732/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-29660 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-29660/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-29661 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-29661/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-8648 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-8648/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-8694 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-8694/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-23133 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-23133/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-26708 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-26708/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-28971 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-28971/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-32606 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-32606/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-33909 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-33909/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3483 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3483/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3489 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3489/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3490 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3490/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3491 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3491/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3640 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3640/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3653 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3653/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3656 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3656/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3744 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3744/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3753 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3753/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-37576 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-37576/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3759 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3759/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-38166 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-38166/"
      }
    ],
    "title": "kernel-devel-5.14.6-1.4 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:10728-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-5.14.6-1.4.aarch64",
                "product": {
                  "name": "kernel-devel-5.14.6-1.4.aarch64",
                  "product_id": "kernel-devel-5.14.6-1.4.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-5.14.6-1.4.aarch64",
                "product": {
                  "name": "kernel-macros-5.14.6-1.4.aarch64",
                  "product_id": "kernel-macros-5.14.6-1.4.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-5.14.6-1.4.aarch64",
                "product": {
                  "name": "kernel-source-5.14.6-1.4.aarch64",
                  "product_id": "kernel-source-5.14.6-1.4.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-vanilla-5.14.6-1.4.aarch64",
                "product": {
                  "name": "kernel-source-vanilla-5.14.6-1.4.aarch64",
                  "product_id": "kernel-source-vanilla-5.14.6-1.4.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-5.14.6-1.4.ppc64le",
                "product": {
                  "name": "kernel-devel-5.14.6-1.4.ppc64le",
                  "product_id": "kernel-devel-5.14.6-1.4.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-5.14.6-1.4.ppc64le",
                "product": {
                  "name": "kernel-macros-5.14.6-1.4.ppc64le",
                  "product_id": "kernel-macros-5.14.6-1.4.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-5.14.6-1.4.ppc64le",
                "product": {
                  "name": "kernel-source-5.14.6-1.4.ppc64le",
                  "product_id": "kernel-source-5.14.6-1.4.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-vanilla-5.14.6-1.4.ppc64le",
                "product": {
                  "name": "kernel-source-vanilla-5.14.6-1.4.ppc64le",
                  "product_id": "kernel-source-vanilla-5.14.6-1.4.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-5.14.6-1.4.s390x",
                "product": {
                  "name": "kernel-devel-5.14.6-1.4.s390x",
                  "product_id": "kernel-devel-5.14.6-1.4.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-5.14.6-1.4.s390x",
                "product": {
                  "name": "kernel-macros-5.14.6-1.4.s390x",
                  "product_id": "kernel-macros-5.14.6-1.4.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-5.14.6-1.4.s390x",
                "product": {
                  "name": "kernel-source-5.14.6-1.4.s390x",
                  "product_id": "kernel-source-5.14.6-1.4.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-vanilla-5.14.6-1.4.s390x",
                "product": {
                  "name": "kernel-source-vanilla-5.14.6-1.4.s390x",
                  "product_id": "kernel-source-vanilla-5.14.6-1.4.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-5.14.6-1.4.x86_64",
                "product": {
                  "name": "kernel-devel-5.14.6-1.4.x86_64",
                  "product_id": "kernel-devel-5.14.6-1.4.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-5.14.6-1.4.x86_64",
                "product": {
                  "name": "kernel-macros-5.14.6-1.4.x86_64",
                  "product_id": "kernel-macros-5.14.6-1.4.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-5.14.6-1.4.x86_64",
                "product": {
                  "name": "kernel-source-5.14.6-1.4.x86_64",
                  "product_id": "kernel-source-5.14.6-1.4.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-vanilla-5.14.6-1.4.x86_64",
                "product": {
                  "name": "kernel-source-vanilla-5.14.6-1.4.x86_64",
                  "product_id": "kernel-source-vanilla-5.14.6-1.4.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-5.14.6-1.4.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64"
        },
        "product_reference": "kernel-devel-5.14.6-1.4.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-5.14.6-1.4.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le"
        },
        "product_reference": "kernel-devel-5.14.6-1.4.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-5.14.6-1.4.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x"
        },
        "product_reference": "kernel-devel-5.14.6-1.4.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-5.14.6-1.4.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64"
        },
        "product_reference": "kernel-devel-5.14.6-1.4.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-5.14.6-1.4.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64"
        },
        "product_reference": "kernel-macros-5.14.6-1.4.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-5.14.6-1.4.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le"
        },
        "product_reference": "kernel-macros-5.14.6-1.4.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-5.14.6-1.4.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x"
        },
        "product_reference": "kernel-macros-5.14.6-1.4.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-5.14.6-1.4.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64"
        },
        "product_reference": "kernel-macros-5.14.6-1.4.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-5.14.6-1.4.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64"
        },
        "product_reference": "kernel-source-5.14.6-1.4.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-5.14.6-1.4.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le"
        },
        "product_reference": "kernel-source-5.14.6-1.4.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-5.14.6-1.4.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x"
        },
        "product_reference": "kernel-source-5.14.6-1.4.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-5.14.6-1.4.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64"
        },
        "product_reference": "kernel-source-5.14.6-1.4.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-vanilla-5.14.6-1.4.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64"
        },
        "product_reference": "kernel-source-vanilla-5.14.6-1.4.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-vanilla-5.14.6-1.4.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le"
        },
        "product_reference": "kernel-source-vanilla-5.14.6-1.4.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-vanilla-5.14.6-1.4.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x"
        },
        "product_reference": "kernel-source-vanilla-5.14.6-1.4.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-vanilla-5.14.6-1.4.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        },
        "product_reference": "kernel-source-vanilla-5.14.6-1.4.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-1000251",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-1000251"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-1000251",
          "url": "https://www.suse.com/security/cve/CVE-2017-1000251"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1057389 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1057389"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1057950 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1057950"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1070535 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1070535"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1072117 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1072117"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1072162 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1072162"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1120758 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1120758"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-1000251"
    },
    {
      "cve": "CVE-2017-12153",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-12153"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are present in a Netlink request. This request can be issued by a user with the CAP_NET_ADMIN capability and may result in a NULL pointer dereference and system crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-12153",
          "url": "https://www.suse.com/security/cve/CVE-2017-12153"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1058410 for CVE-2017-12153",
          "url": "https://bugzilla.suse.com/1058410"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1058624 for CVE-2017-12153",
          "url": "https://bugzilla.suse.com/1058624"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-12153"
    },
    {
      "cve": "CVE-2017-13080",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-13080"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-13080",
          "url": "https://www.suse.com/security/cve/CVE-2017-13080"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1056061 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1056061"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1063479 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1063479"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1063667 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1063667"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1063671 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1063671"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066295 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1066295"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105108 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1105108"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178872 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1178872"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179588 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1179588"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-13080"
    },
    {
      "cve": "CVE-2017-14051",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-14051"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in drivers/scsi/qla2xxx/qla_attr.c in the Linux kernel through 4.12.10 allows local users to cause a denial of service (memory corruption and system crash) by leveraging root access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-14051",
          "url": "https://www.suse.com/security/cve/CVE-2017-14051"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1056588 for CVE-2017-14051",
          "url": "https://bugzilla.suse.com/1056588"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-14051"
    },
    {
      "cve": "CVE-2017-15129",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15129"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function get_net_ns_by_id() in net/core/net_namespace.c does not check for the net::count value after it has found a peer network in netns_ids idr, which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15129",
          "url": "https://www.suse.com/security/cve/CVE-2017-15129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074839 for CVE-2017-15129",
          "url": "https://bugzilla.suse.com/1074839"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-15129"
    },
    {
      "cve": "CVE-2017-15265",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15265"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Race condition in the ALSA subsystem in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted /dev/snd/seq ioctl calls, related to sound/core/seq/seq_clientmgr.c and sound/core/seq/seq_ports.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15265",
          "url": "https://www.suse.com/security/cve/CVE-2017-15265"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062520 for CVE-2017-15265",
          "url": "https://bugzilla.suse.com/1062520"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-15265",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-15265"
    },
    {
      "cve": "CVE-2017-16536",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16536"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The cx231xx_usb_probe function in drivers/media/usb/cx231xx/cx231xx-cards.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16536",
          "url": "https://www.suse.com/security/cve/CVE-2017-16536"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066606 for CVE-2017-16536",
          "url": "https://bugzilla.suse.com/1066606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16536",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16536",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16536"
    },
    {
      "cve": "CVE-2017-16537",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16537"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The imon_probe function in drivers/media/rc/imon.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16537",
          "url": "https://www.suse.com/security/cve/CVE-2017-16537"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066573 for CVE-2017-16537",
          "url": "https://bugzilla.suse.com/1066573"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16537",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16537",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16537"
    },
    {
      "cve": "CVE-2017-16645",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16645"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The ims_pcu_get_cdc_union_desc function in drivers/input/misc/ims-pcu.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (ims_pcu_parse_cdc_data out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16645",
          "url": "https://www.suse.com/security/cve/CVE-2017-16645"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067132 for CVE-2017-16645",
          "url": "https://bugzilla.suse.com/1067132"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16645",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16645",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16645"
    },
    {
      "cve": "CVE-2017-16646",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16646"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/media/usb/dvb-usb/dib0700_devices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (BUG and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16646",
          "url": "https://www.suse.com/security/cve/CVE-2017-16646"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067105 for CVE-2017-16646",
          "url": "https://bugzilla.suse.com/1067105"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16646",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16646"
    },
    {
      "cve": "CVE-2017-16647",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16647"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/usb/asix_devices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16647",
          "url": "https://www.suse.com/security/cve/CVE-2017-16647"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067102 for CVE-2017-16647",
          "url": "https://bugzilla.suse.com/1067102"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16647",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16647"
    },
    {
      "cve": "CVE-2017-16648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The dvb_frontend_free function in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (use-after-free and system crash) or possibly have unspecified other impact via a crafted USB device. NOTE: the function was later renamed __dvb_frontend_free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16648",
          "url": "https://www.suse.com/security/cve/CVE-2017-16648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067087 for CVE-2017-16648",
          "url": "https://bugzilla.suse.com/1067087"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16648",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16648",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16648"
    },
    {
      "cve": "CVE-2017-16995",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16995"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The check_alu_op function in kernel/bpf/verifier.c in the Linux kernel through 4.4 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect sign extension.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16995",
          "url": "https://www.suse.com/security/cve/CVE-2017-16995"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-16995",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16995"
    },
    {
      "cve": "CVE-2017-16996",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16996"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging register truncation mishandling.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16996",
          "url": "https://www.suse.com/security/cve/CVE-2017-16996"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-16996",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16996"
    },
    {
      "cve": "CVE-2017-17448",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17448"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "net/netfilter/nfnetlink_cthelper.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for new, get, and del operations, which allows local users to bypass intended access restrictions because the nfnl_cthelper_list data structure is shared across all net namespaces.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17448",
          "url": "https://www.suse.com/security/cve/CVE-2017-17448"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071693 for CVE-2017-17448",
          "url": "https://bugzilla.suse.com/1071693"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17448"
    },
    {
      "cve": "CVE-2017-17449",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17449"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The __netlink_deliver_tap_skb function in net/netlink/af_netlink.c in the Linux kernel through 4.14.4, when CONFIG_NLMON is enabled, does not restrict observations of Netlink messages to a single net namespace, which allows local users to obtain sensitive information by leveraging the CAP_NET_ADMIN capability to sniff an nlmon interface for all Netlink activity on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17449",
          "url": "https://www.suse.com/security/cve/CVE-2017-17449"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071694 for CVE-2017-17449",
          "url": "https://bugzilla.suse.com/1071694"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17449"
    },
    {
      "cve": "CVE-2017-17450",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17450"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "net/netfilter/xt_osf.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for add_callback and remove_callback operations, which allows local users to bypass intended access restrictions because the xt_osf_fingers data structure is shared across all net namespaces.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17450",
          "url": "https://www.suse.com/security/cve/CVE-2017-17450"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071695 for CVE-2017-17450",
          "url": "https://bugzilla.suse.com/1071695"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074033 for CVE-2017-17450",
          "url": "https://bugzilla.suse.com/1074033"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-17450",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17450"
    },
    {
      "cve": "CVE-2017-17852",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17852"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging mishandling of 32-bit ALU ops.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17852",
          "url": "https://www.suse.com/security/cve/CVE-2017-17852"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17852",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17852"
    },
    {
      "cve": "CVE-2017-17853",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17853"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect BPF_RSH signed bounds calculations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17853",
          "url": "https://www.suse.com/security/cve/CVE-2017-17853"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17853",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17853"
    },
    {
      "cve": "CVE-2017-17854",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17854"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (integer overflow and memory corruption) or possibly have unspecified other impact by leveraging unrestricted integer values for pointer arithmetic.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17854",
          "url": "https://www.suse.com/security/cve/CVE-2017-17854"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17854",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17854"
    },
    {
      "cve": "CVE-2017-17855",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17855"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging improper use of pointers in place of scalars.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17855",
          "url": "https://www.suse.com/security/cve/CVE-2017-17855"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17855",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17855"
    },
    {
      "cve": "CVE-2017-17856",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17856"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging the lack of stack-pointer alignment enforcement.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17856",
          "url": "https://www.suse.com/security/cve/CVE-2017-17856"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17856",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17856"
    },
    {
      "cve": "CVE-2017-17857",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17857"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The check_stack_boundary function in kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging mishandling of invalid variable stack read operations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17857",
          "url": "https://www.suse.com/security/cve/CVE-2017-17857"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17857",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17857"
    },
    {
      "cve": "CVE-2017-17862",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17862"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 ignores unreachable code, even though it would still be processed by JIT compilers. This behavior, also considered an improper branch-pruning logic issue, could possibly be used by local users for denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17862",
          "url": "https://www.suse.com/security/cve/CVE-2017-17862"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17862",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17862"
    },
    {
      "cve": "CVE-2017-5123",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5123"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient data validation in waitid allowed an user to escape sandboxes on Linux.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5123",
          "url": "https://www.suse.com/security/cve/CVE-2017-5123"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062473 for CVE-2017-5123",
          "url": "https://bugzilla.suse.com/1062473"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1122971 for CVE-2017-5123",
          "url": "https://bugzilla.suse.com/1122971"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5123"
    },
    {
      "cve": "CVE-2017-5715",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5715"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5715",
          "url": "https://www.suse.com/security/cve/CVE-2017-5715"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074741 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074741"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074919 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075007 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075007"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075262 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075262"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075419 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075419"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076115 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076115"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076372 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076372"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076606 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1078353 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1078353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080039 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1080039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087887 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1088147 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1088147"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1095735 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1095735"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102517 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1102517"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105108 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1105108"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1126516 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1126516"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173489 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1173489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201457 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201457"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203236 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1203236"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5715"
    },
    {
      "cve": "CVE-2017-5753",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5753"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5753",
          "url": "https://www.suse.com/security/cve/CVE-2017-5753"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075419 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1075419"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075748 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1075748"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080039 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1080039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087084 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1087084"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136865 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1136865"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1201877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209547 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1209547"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5753"
    },
    {
      "cve": "CVE-2017-5754",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5754"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5754",
          "url": "https://www.suse.com/security/cve/CVE-2017-5754"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075008 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1075008"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115045 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1115045"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136865 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1136865"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1201877"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5754"
    },
    {
      "cve": "CVE-2017-7541",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7541"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The brcmf_cfg80211_mgmt_tx function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel before 4.12.3 allows local users to cause a denial of service (buffer overflow and system crash) or possibly gain privileges via a crafted NL80211_CMD_FRAME Netlink packet.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7541",
          "url": "https://www.suse.com/security/cve/CVE-2017-7541"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1049645 for CVE-2017-7541",
          "url": "https://bugzilla.suse.com/1049645"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7541"
    },
    {
      "cve": "CVE-2017-7542",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7542"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel through 4.12.3 allows local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7542",
          "url": "https://www.suse.com/security/cve/CVE-2017-7542"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1049882 for CVE-2017-7542",
          "url": "https://bugzilla.suse.com/1049882"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1061936 for CVE-2017-7542",
          "url": "https://bugzilla.suse.com/1061936"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7542"
    },
    {
      "cve": "CVE-2017-8824",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-8824"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The dccp_disconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service (use-after-free) via an AF_UNSPEC connect system call during the DCCP_LISTEN state.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-8824",
          "url": "https://www.suse.com/security/cve/CVE-2017-8824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1070771 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1070771"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076734 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1076734"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1092904 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1092904"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-8824"
    },
    {
      "cve": "CVE-2017-8831",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-8831"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel through 4.11.5 allows local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by changing a certain sequence-number value, aka a \"double fetch\" vulnerability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-8831",
          "url": "https://www.suse.com/security/cve/CVE-2017-8831"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1037994 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1037994"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1061936 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1061936"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-8831"
    },
    {
      "cve": "CVE-2018-1000004",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1000004"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1000004",
          "url": "https://www.suse.com/security/cve/CVE-2018-1000004"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076017 for CVE-2018-1000004",
          "url": "https://bugzilla.suse.com/1076017"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-1000004",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-1000004"
    },
    {
      "cve": "CVE-2018-10322",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10322"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The xfs_dinode_verify function in fs/xfs/libxfs/xfs_inode_buf.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service (xfs_ilock_attr_map_shared invalid pointer dereference) via a crafted xfs image.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10322",
          "url": "https://www.suse.com/security/cve/CVE-2018-10322"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-10322",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1090749 for CVE-2018-10322",
          "url": "https://bugzilla.suse.com/1090749"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10322"
    },
    {
      "cve": "CVE-2018-10323",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10323"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The xfs_bmap_extents_to_btree function in fs/xfs/libxfs/xfs_bmap.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service (xfs_bmapi_write NULL pointer dereference) via a crafted xfs image.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10323",
          "url": "https://www.suse.com/security/cve/CVE-2018-10323"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-10323",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1090717 for CVE-2018-10323",
          "url": "https://bugzilla.suse.com/1090717"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10323"
    },
    {
      "cve": "CVE-2018-1068",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1068"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux 4.x kernel\u0027s implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1068",
          "url": "https://www.suse.com/security/cve/CVE-2018-1068"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085107 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1085107"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085114 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1085114"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1123903 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1123903"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-1068"
    },
    {
      "cve": "CVE-2018-1118",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1118"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1118",
          "url": "https://www.suse.com/security/cve/CVE-2018-1118"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-1118",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1092472 for CVE-2018-1118",
          "url": "https://bugzilla.suse.com/1092472"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-1118"
    },
    {
      "cve": "CVE-2018-12232",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-12232"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In net/socket.c in the Linux kernel through 4.17.1, there is a race condition between fchownat and close in cases where they target the same socket file descriptor, related to the sock_close and sockfs_setattr functions. fchownat does not increment the file descriptor reference count, which allows close to set the socket to NULL during fchownat\u0027s execution, leading to a NULL pointer dereference and system crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-12232",
          "url": "https://www.suse.com/security/cve/CVE-2018-12232"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1097593 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1097593"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1125907 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1125907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1127757 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1127757"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-12232"
    },
    {
      "cve": "CVE-2018-12714",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-12714"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 4.17.2. The filter parsing in kernel/trace/trace_events_filter.c could be called with no filter, which is an N=0 case when it expected at least one line to have been read, thus making the N-1 index invalid. This allows attackers to cause a denial of service (slab out-of-bounds write) or possibly have unspecified other impact via crafted perf_event_open and mmap system calls.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-12714",
          "url": "https://www.suse.com/security/cve/CVE-2018-12714"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1098933 for CVE-2018-12714",
          "url": "https://bugzilla.suse.com/1098933"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-12714"
    },
    {
      "cve": "CVE-2018-13053",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-13053"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The alarm_timer_nsleep function in kernel/time/alarmtimer.c in the Linux kernel through 4.17.3 has an integer overflow via a large relative timeout because ktime_add_safe is not used.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-13053",
          "url": "https://www.suse.com/security/cve/CVE-2018-13053"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1099924 for CVE-2018-13053",
          "url": "https://bugzilla.suse.com/1099924"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2018-13053",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-13053"
    },
    {
      "cve": "CVE-2018-18710",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18710"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 4.19. An information leak in cdrom_ioctl_select_disc in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940 and CVE-2018-16658.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18710",
          "url": "https://www.suse.com/security/cve/CVE-2018-18710"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1113751 for CVE-2018-18710",
          "url": "https://bugzilla.suse.com/1113751"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-18710"
    },
    {
      "cve": "CVE-2018-19824",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-19824"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.19.6, a local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device (with zero interfaces) that is mishandled in usb_audio_probe in sound/usb/card.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-19824",
          "url": "https://www.suse.com/security/cve/CVE-2018-19824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118152 for CVE-2018-19824",
          "url": "https://bugzilla.suse.com/1118152"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-19824"
    },
    {
      "cve": "CVE-2018-5332",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5332"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5332",
          "url": "https://www.suse.com/security/cve/CVE-2018-5332"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075621 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1075621"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.6,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-5332"
    },
    {
      "cve": "CVE-2018-5333",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5333"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5333",
          "url": "https://www.suse.com/security/cve/CVE-2018-5333"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075617 for CVE-2018-5333",
          "url": "https://bugzilla.suse.com/1075617"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-5333",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-5333"
    },
    {
      "cve": "CVE-2018-8043",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-8043"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The unimac_mdio_probe function in drivers/net/phy/mdio-bcm-unimac.c in the Linux kernel through 4.15.8 does not validate certain resource availability, which allows local users to cause a denial of service (NULL pointer dereference).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-8043",
          "url": "https://www.suse.com/security/cve/CVE-2018-8043"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1084829 for CVE-2018-8043",
          "url": "https://bugzilla.suse.com/1084829"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 0,
            "baseSeverity": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-8043"
    },
    {
      "cve": "CVE-2018-8087",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-8087"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Memory leak in the hwsim_new_radio_nl function in drivers/net/wireless/mac80211_hwsim.c in the Linux kernel through 4.15.9 allows local users to cause a denial of service (memory consumption) by triggering an out-of-array error case.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-8087",
          "url": "https://www.suse.com/security/cve/CVE-2018-8087"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085053 for CVE-2018-8087",
          "url": "https://bugzilla.suse.com/1085053"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-8087"
    },
    {
      "cve": "CVE-2018-8822",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-8822"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Incorrect buffer length handling in the ncp_read_kernel function in fs/ncpfs/ncplib_kernel.c in the Linux kernel through 4.15.11, and in drivers/staging/ncpfs/ncplib_kernel.c in the Linux kernel 4.16-rc through 4.16-rc6, could be exploited by malicious NCPFS servers to crash the kernel or execute code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-8822",
          "url": "https://www.suse.com/security/cve/CVE-2018-8822"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1086162 for CVE-2018-8822",
          "url": "https://bugzilla.suse.com/1086162"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1090404 for CVE-2018-8822",
          "url": "https://bugzilla.suse.com/1090404"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-8822",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-8822"
    },
    {
      "cve": "CVE-2019-10207",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-10207"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s Bluetooth implementation of UART, all versions kernel 3.x.x before 4.18.0 and kernel 5.x.x. An attacker with local access and write permissions to the Bluetooth hardware could use this flaw to issue a specially crafted ioctl function call and cause the system to crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-10207",
          "url": "https://www.suse.com/security/cve/CVE-2019-10207"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1123959 for CVE-2019-10207",
          "url": "https://bugzilla.suse.com/1123959"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142857 for CVE-2019-10207",
          "url": "https://bugzilla.suse.com/1142857"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-10207"
    },
    {
      "cve": "CVE-2019-11477",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-11477"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Jonathan Looney discovered that the TCP_SKB_CB(skb)-\u003etcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit 3b4929f65b0d8249f19a50245cd88ed1a2f78cff.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-11477",
          "url": "https://www.suse.com/security/cve/CVE-2019-11477"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132686 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1132686"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1137586 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1137586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142129 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1142129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1153242 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1153242"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-11477"
    },
    {
      "cve": "CVE-2019-11478",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-11478"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit f070ef2ac66716357066b683fb0baf55f8191a2e.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-11478",
          "url": "https://www.suse.com/security/cve/CVE-2019-11478"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132686 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1132686"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1137586 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1137586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142129 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1142129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1143542 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1143542"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-11478"
    },
    {
      "cve": "CVE-2019-11479",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-11479"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commits 967c05aee439e6e5d7d805e195b3a20ef5c433d6 and 5f3e2bf008c2221478101ee72f5cb4654b9fc363.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-11479",
          "url": "https://www.suse.com/security/cve/CVE-2019-11479"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132686 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1132686"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1137586 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1137586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142129 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1142129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1143542 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1143542"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-11479"
    },
    {
      "cve": "CVE-2019-14615",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14615"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14615",
          "url": "https://www.suse.com/security/cve/CVE-2019-14615"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160195 for CVE-2019-14615",
          "url": "https://bugzilla.suse.com/1160195"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1165881 for CVE-2019-14615",
          "url": "https://bugzilla.suse.com/1165881"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-14615"
    },
    {
      "cve": "CVE-2019-14814",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14814"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14814",
          "url": "https://www.suse.com/security/cve/CVE-2019-14814"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146512 for CVE-2019-14814",
          "url": "https://bugzilla.suse.com/1146512"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173664 for CVE-2019-14814",
          "url": "https://bugzilla.suse.com/1173664"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173665 for CVE-2019-14814",
          "url": "https://bugzilla.suse.com/1173665"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-14814"
    },
    {
      "cve": "CVE-2019-14896",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14896"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14896",
          "url": "https://www.suse.com/security/cve/CVE-2019-14896"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1157157 for CVE-2019-14896",
          "url": "https://bugzilla.suse.com/1157157"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160468 for CVE-2019-14896",
          "url": "https://bugzilla.suse.com/1160468"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-14896"
    },
    {
      "cve": "CVE-2019-15030",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15030"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users\u0027 processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process because of a missing arch/powerpc/kernel/process.c check.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15030",
          "url": "https://www.suse.com/security/cve/CVE-2019-15030"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149713 for CVE-2019-15030",
          "url": "https://bugzilla.suse.com/1149713"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15030"
    },
    {
      "cve": "CVE-2019-15031",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15031"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users\u0027 processes via an interrupt. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process, because MSR_TM_ACTIVE is misused in arch/powerpc/kernel/process.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15031",
          "url": "https://www.suse.com/security/cve/CVE-2019-15031"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149713 for CVE-2019-15031",
          "url": "https://bugzilla.suse.com/1149713"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15031"
    },
    {
      "cve": "CVE-2019-15098",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15098"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15098",
          "url": "https://www.suse.com/security/cve/CVE-2019-15098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146378 for CVE-2019-15098",
          "url": "https://bugzilla.suse.com/1146378"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146543 for CVE-2019-15098",
          "url": "https://bugzilla.suse.com/1146543"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15098"
    },
    {
      "cve": "CVE-2019-15099",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15099"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15099",
          "url": "https://www.suse.com/security/cve/CVE-2019-15099"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146368 for CVE-2019-15099",
          "url": "https://bugzilla.suse.com/1146368"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15099"
    },
    {
      "cve": "CVE-2019-15290",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15290"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-15098. Reason: This candidate is a duplicate of CVE-2019-15098. Notes: All CVE users should reference CVE-2019-15098 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15290",
          "url": "https://www.suse.com/security/cve/CVE-2019-15290"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146378 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1146378"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1146519"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146543 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1146543"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158381 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1158381"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158834 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1158834"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15290"
    },
    {
      "cve": "CVE-2019-15504",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15504"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/rsi/rsi_91x_usb.c in the Linux kernel through 5.2.9 has a Double Free via crafted USB device traffic (which may be remote via usbip or usbredir).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15504",
          "url": "https://www.suse.com/security/cve/CVE-2019-15504"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1147116 for CVE-2019-15504",
          "url": "https://bugzilla.suse.com/1147116"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185852 for CVE-2019-15504",
          "url": "https://bugzilla.suse.com/1185852"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-15504"
    },
    {
      "cve": "CVE-2019-15902",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15902"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream \"x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()\" commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15902",
          "url": "https://www.suse.com/security/cve/CVE-2019-15902"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149376 for CVE-2019-15902",
          "url": "https://bugzilla.suse.com/1149376"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1155131 for CVE-2019-15902",
          "url": "https://bugzilla.suse.com/1155131"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15902"
    },
    {
      "cve": "CVE-2019-16231",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16231"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/fjes/fjes_main.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16231",
          "url": "https://www.suse.com/security/cve/CVE-2019-16231"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1150466 for CVE-2019-16231",
          "url": "https://bugzilla.suse.com/1150466"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-16231"
    },
    {
      "cve": "CVE-2019-16232",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16232"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/marvell/libertas/if_sdio.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16232",
          "url": "https://www.suse.com/security/cve/CVE-2019-16232"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1150465 for CVE-2019-16232",
          "url": "https://bugzilla.suse.com/1150465"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-16232"
    },
    {
      "cve": "CVE-2019-16234",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16234"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/intel/iwlwifi/pcie/trans.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16234",
          "url": "https://www.suse.com/security/cve/CVE-2019-16234"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1150452 for CVE-2019-16234",
          "url": "https://bugzilla.suse.com/1150452"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-16234"
    },
    {
      "cve": "CVE-2019-17133",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-17133"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-17133",
          "url": "https://www.suse.com/security/cve/CVE-2019-17133"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1153158 for CVE-2019-17133",
          "url": "https://bugzilla.suse.com/1153158"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1153161 for CVE-2019-17133",
          "url": "https://bugzilla.suse.com/1153161"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-17133"
    },
    {
      "cve": "CVE-2019-17666",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-17666"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to a buffer overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-17666",
          "url": "https://www.suse.com/security/cve/CVE-2019-17666"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1154372 for CVE-2019-17666",
          "url": "https://bugzilla.suse.com/1154372"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-17666"
    },
    {
      "cve": "CVE-2019-18808",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18808"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-128c66429247.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18808",
          "url": "https://www.suse.com/security/cve/CVE-2019-18808"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156259 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1156259"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189884 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1189884"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190534 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1190534"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18808"
    },
    {
      "cve": "CVE-2019-18812",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18812"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the sof_dfsentry_write() function in sound/soc/sof/debug.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-c0a333d842ef.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18812",
          "url": "https://www.suse.com/security/cve/CVE-2019-18812"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156277 for CVE-2019-18812",
          "url": "https://bugzilla.suse.com/1156277"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18812"
    },
    {
      "cve": "CVE-2019-18813",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18813"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the dwc3_pci_probe() function in drivers/usb/dwc3/dwc3-pci.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering platform_device_add_properties() failures, aka CID-9bbfceea12a8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18813",
          "url": "https://www.suse.com/security/cve/CVE-2019-18813"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156278 for CVE-2019-18813",
          "url": "https://bugzilla.suse.com/1156278"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18813"
    },
    {
      "cve": "CVE-2019-19252",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19252"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "vcs_write in drivers/tty/vt/vc_screen.c in the Linux kernel through 5.3.13 does not prevent write access to vcsu devices, aka CID-0c9acb1af77a.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19252",
          "url": "https://www.suse.com/security/cve/CVE-2019-19252"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1157813 for CVE-2019-19252",
          "url": "https://bugzilla.suse.com/1157813"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19252"
    },
    {
      "cve": "CVE-2019-19332",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19332"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel\u0027s KVM hypervisor handled the \u0027KVM_GET_EMULATED_CPUID\u0027 ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A user or process able to access the \u0027/dev/kvm\u0027 device could use this flaw to crash the system, resulting in a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19332",
          "url": "https://www.suse.com/security/cve/CVE-2019-19332"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158827 for CVE-2019-19332",
          "url": "https://bugzilla.suse.com/1158827"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19332"
    },
    {
      "cve": "CVE-2019-19338",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19338"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19338",
          "url": "https://www.suse.com/security/cve/CVE-2019-19338"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158954 for CVE-2019-19338",
          "url": "https://bugzilla.suse.com/1158954"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19338"
    },
    {
      "cve": "CVE-2019-3016",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3016"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In a Linux KVM guest that has PV TLB enabled, a process in the guest kernel may be able to read memory locations from another process in the same guest. This problem is limit to the host running linux kernel 4.10 with a guest running linux kernel 4.16 or later. The problem mainly affects AMD processors but Intel CPUs cannot be ruled out.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3016",
          "url": "https://www.suse.com/security/cve/CVE-2019-3016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2019-3016",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1161154 for CVE-2019-3016",
          "url": "https://bugzilla.suse.com/1161154"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3016"
    },
    {
      "cve": "CVE-2019-3846",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3846"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3846",
          "url": "https://www.suse.com/security/cve/CVE-2019-3846"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136424 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1136424"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136446 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1136446"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156330 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1156330"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-3846"
    },
    {
      "cve": "CVE-2019-3882",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3882"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s vfio interface implementation that permits violation of the user\u0027s locked memory limit. If a device is bound to a vfio driver, such as vfio-pci, and the local attacker is administratively granted ownership of the device, it may cause a system memory exhaustion and thus a denial of service (DoS). Versions 3.10, 4.14 and 4.18 are vulnerable.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3882",
          "url": "https://www.suse.com/security/cve/CVE-2019-3882"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131416 for CVE-2019-3882",
          "url": "https://bugzilla.suse.com/1131416"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131427 for CVE-2019-3882",
          "url": "https://bugzilla.suse.com/1131427"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1133319 for CVE-2019-3882",
          "url": "https://bugzilla.suse.com/1133319"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3882"
    },
    {
      "cve": "CVE-2019-3887",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3887"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. In that, L1 guest could access L0\u0027s APIC register values via L2 guest, when \u0027virtualize x2APIC mode\u0027 is enabled. A guest could use this flaw to potentially crash the host kernel resulting in DoS issue. Kernel versions from 4.16 and newer are vulnerable to this issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3887",
          "url": "https://www.suse.com/security/cve/CVE-2019-3887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131800 for CVE-2019-3887",
          "url": "https://bugzilla.suse.com/1131800"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3887"
    },
    {
      "cve": "CVE-2019-6974",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-6974"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race condition, leading to a use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-6974",
          "url": "https://www.suse.com/security/cve/CVE-2019-6974"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124728 for CVE-2019-6974",
          "url": "https://bugzilla.suse.com/1124728"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124729 for CVE-2019-6974",
          "url": "https://bugzilla.suse.com/1124729"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-6974"
    },
    {
      "cve": "CVE-2019-7221",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-7221"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-7221",
          "url": "https://www.suse.com/security/cve/CVE-2019-7221"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124732 for CVE-2019-7221",
          "url": "https://bugzilla.suse.com/1124732"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124734 for CVE-2019-7221",
          "url": "https://bugzilla.suse.com/1124734"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-7221"
    },
    {
      "cve": "CVE-2019-7222",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-7222"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-7222",
          "url": "https://www.suse.com/security/cve/CVE-2019-7222"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124735 for CVE-2019-7222",
          "url": "https://bugzilla.suse.com/1124735"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.8,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-7222"
    },
    {
      "cve": "CVE-2019-8564",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-8564"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A logic issue was addressed with improved validation. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. An attacker in a privileged network position can modify driver state.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-8564",
          "url": "https://www.suse.com/security/cve/CVE-2019-8564"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132673 for CVE-2019-8564",
          "url": "https://bugzilla.suse.com/1132673"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132828 for CVE-2019-8564",
          "url": "https://bugzilla.suse.com/1132828"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-8564"
    },
    {
      "cve": "CVE-2019-8912",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-8912"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.20.11, af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which leads to a use-after-free in sockfs_setattr.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-8912",
          "url": "https://www.suse.com/security/cve/CVE-2019-8912"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1125907 for CVE-2019-8912",
          "url": "https://bugzilla.suse.com/1125907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1126284 for CVE-2019-8912",
          "url": "https://bugzilla.suse.com/1126284"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-8912"
    },
    {
      "cve": "CVE-2019-9500",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-9500"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. If the Wake-up on Wireless LAN functionality is configured, a malicious event frame can be constructed to trigger an heap buffer overflow in the brcmf_wowl_nd_results function. This vulnerability can be exploited with compromised chipsets to compromise the host, or when used in combination with CVE-2019-9503, can be used remotely. In the worst case scenario, by sending specially-crafted WiFi packets, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system. More typically, this vulnerability will result in denial-of-service conditions.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-9500",
          "url": "https://www.suse.com/security/cve/CVE-2019-9500"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132681 for CVE-2019-9500",
          "url": "https://bugzilla.suse.com/1132681"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-9500"
    },
    {
      "cve": "CVE-2020-10135",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10135"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Legacy pairing and secure-connections pairing authentication in Bluetooth BR/EDR Core Specification v5.2 and earlier may allow an unauthenticated user to complete authentication without pairing credentials via adjacent access. An unauthenticated, adjacent attacker could impersonate a Bluetooth BR/EDR master or slave to pair with a previously paired remote device to successfully complete the authentication procedure without knowing the link key.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10135",
          "url": "https://www.suse.com/security/cve/CVE-2020-10135"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1171988 for CVE-2020-10135",
          "url": "https://bugzilla.suse.com/1171988"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10135"
    },
    {
      "cve": "CVE-2020-10766",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10766"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A logic bug flaw was found in Linux kernel before 5.8-rc1 in the implementation of SSBD. A bug in the logic handling allows an attacker with a local account to disable SSBD protection during a context switch when additional speculative execution mitigations are in place. This issue was introduced when the per task/process conditional STIPB switching was added on top of the existing SSBD switching. The highest threat from this vulnerability is to confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10766",
          "url": "https://www.suse.com/security/cve/CVE-2020-10766"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2020-10766",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172781 for CVE-2020-10766",
          "url": "https://bugzilla.suse.com/1172781"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10766"
    },
    {
      "cve": "CVE-2020-10767",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10767"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The IBPB mitigation will be disabled when STIBP is not available or when the Enhanced Indirect Branch Restricted Speculation (IBRS) is available. This flaw allows a local attacker to perform a Spectre V2 style attack when this configuration is active. The highest threat from this vulnerability is to confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10767",
          "url": "https://www.suse.com/security/cve/CVE-2020-10767"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2020-10767",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172782 for CVE-2020-10767",
          "url": "https://bugzilla.suse.com/1172782"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10767"
    },
    {
      "cve": "CVE-2020-10768",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10768"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function, where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as being \u0027force disabled\u0027 when it is not and opens the system to Spectre v2 attacks. The highest threat from this vulnerability is to confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10768",
          "url": "https://www.suse.com/security/cve/CVE-2020-10768"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2020-10768",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172783 for CVE-2020-10768",
          "url": "https://bugzilla.suse.com/1172783"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10768"
    },
    {
      "cve": "CVE-2020-12351",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-12351"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-12351",
          "url": "https://www.suse.com/security/cve/CVE-2020-12351"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177724 for CVE-2020-12351",
          "url": "https://bugzilla.suse.com/1177724"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177729 for CVE-2020-12351",
          "url": "https://bugzilla.suse.com/1177729"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178397 for CVE-2020-12351",
          "url": "https://bugzilla.suse.com/1178397"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-12351"
    },
    {
      "cve": "CVE-2020-12352",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-12352"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-12352",
          "url": "https://www.suse.com/security/cve/CVE-2020-12352"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177725 for CVE-2020-12352",
          "url": "https://bugzilla.suse.com/1177725"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178398 for CVE-2020-12352",
          "url": "https://bugzilla.suse.com/1178398"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-12352"
    },
    {
      "cve": "CVE-2020-14331",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-14331"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console, calling an ioctl VT_RESIZE, which causes an out-of-bounds write to occur. This flaw allows a local user with access to the VGA console to crash the system, potentially escalating their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-14331",
          "url": "https://www.suse.com/security/cve/CVE-2020-14331"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1174205 for CVE-2020-14331",
          "url": "https://bugzilla.suse.com/1174205"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1174247 for CVE-2020-14331",
          "url": "https://bugzilla.suse.com/1174247"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-14331"
    },
    {
      "cve": "CVE-2020-14386",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-14386"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel before 5.9-rc4. Memory corruption can be exploited to gain root privileges from unprivileged processes. The highest threat from this vulnerability is to data confidentiality and integrity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-14386",
          "url": "https://www.suse.com/security/cve/CVE-2020-14386"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1176069 for CVE-2020-14386",
          "url": "https://bugzilla.suse.com/1176069"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1176072 for CVE-2020-14386",
          "url": "https://bugzilla.suse.com/1176072"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-14386"
    },
    {
      "cve": "CVE-2020-24586",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-24586"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances, when another device sends fragmented frames encrypted using WEP, CCMP, or GCMP, this can be abused to inject arbitrary network packets and/or exfiltrate user data.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-24586",
          "url": "https://www.suse.com/security/cve/CVE-2020-24586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185859 for CVE-2020-24586",
          "url": "https://bugzilla.suse.com/1185859"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192868 for CVE-2020-24586",
          "url": "https://bugzilla.suse.com/1192868"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-24586"
    },
    {
      "cve": "CVE-2020-24587",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-24587"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-24587",
          "url": "https://www.suse.com/security/cve/CVE-2020-24587"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185859 for CVE-2020-24587",
          "url": "https://bugzilla.suse.com/1185859"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185862 for CVE-2020-24587",
          "url": "https://bugzilla.suse.com/1185862"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192868 for CVE-2020-24587",
          "url": "https://bugzilla.suse.com/1192868"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-24587"
    },
    {
      "cve": "CVE-2020-24588",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-24588"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-24588",
          "url": "https://www.suse.com/security/cve/CVE-2020-24588"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185861 for CVE-2020-24588",
          "url": "https://bugzilla.suse.com/1185861"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192868 for CVE-2020-24588",
          "url": "https://bugzilla.suse.com/1192868"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199701 for CVE-2020-24588",
          "url": "https://bugzilla.suse.com/1199701"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-24588"
    },
    {
      "cve": "CVE-2020-25639",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25639"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A NULL pointer dereference flaw was found in the Linux kernel\u0027s GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user calls ioctl DRM_IOCTL_NOUVEAU_CHANNEL_ALLOC. This flaw allows a local user to crash the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25639",
          "url": "https://www.suse.com/security/cve/CVE-2020-25639"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1176846 for CVE-2020-25639",
          "url": "https://bugzilla.suse.com/1176846"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-25639"
    },
    {
      "cve": "CVE-2020-25656",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25656"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25656",
          "url": "https://www.suse.com/security/cve/CVE-2020-25656"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177766 for CVE-2020-25656",
          "url": "https://bugzilla.suse.com/1177766"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-25656"
    },
    {
      "cve": "CVE-2020-25668",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25668"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in Linux Kernel because access to the global variable fg_console is not properly synchronized leading to a use after free in con_font_op.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25668",
          "url": "https://www.suse.com/security/cve/CVE-2020-25668"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178123 for CVE-2020-25668",
          "url": "https://bugzilla.suse.com/1178123"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178622 for CVE-2020-25668",
          "url": "https://bugzilla.suse.com/1178622"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196914 for CVE-2020-25668",
          "url": "https://bugzilla.suse.com/1196914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-25668"
    },
    {
      "cve": "CVE-2020-26141",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-26141"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-26141",
          "url": "https://www.suse.com/security/cve/CVE-2020-26141"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185987 for CVE-2020-26141",
          "url": "https://bugzilla.suse.com/1185987"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-26141"
    },
    {
      "cve": "CVE-2020-2732",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-2732"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some circumstances, an L2 guest may trick the L0 guest into accessing sensitive L1 resources that should be inaccessible to the L2 guest.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-2732",
          "url": "https://www.suse.com/security/cve/CVE-2020-2732"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1163971 for CVE-2020-2732",
          "url": "https://bugzilla.suse.com/1163971"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.2,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2020-2732"
    },
    {
      "cve": "CVE-2020-29660",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-29660"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-29660",
          "url": "https://www.suse.com/security/cve/CVE-2020-29660"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179745 for CVE-2020-29660",
          "url": "https://bugzilla.suse.com/1179745"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179877 for CVE-2020-29660",
          "url": "https://bugzilla.suse.com/1179877"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-29660"
    },
    {
      "cve": "CVE-2020-29661",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-29661"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-29661",
          "url": "https://www.suse.com/security/cve/CVE-2020-29661"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179745 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1179745"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179877 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1179877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214268 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1214268"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218966 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1218966"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-29661"
    },
    {
      "cve": "CVE-2020-8648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-8648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_receive_buf_common function in drivers/tty/n_tty.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-8648",
          "url": "https://www.suse.com/security/cve/CVE-2020-8648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1162928 for CVE-2020-8648",
          "url": "https://bugzilla.suse.com/1162928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-8648"
    },
    {
      "cve": "CVE-2020-8694",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-8694"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient access control in the Linux kernel driver for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-8694",
          "url": "https://www.suse.com/security/cve/CVE-2020-8694"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1170415 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1170415"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1170446 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1170446"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178591 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1178591"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178700 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1178700"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179661 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1179661"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-8694"
    },
    {
      "cve": "CVE-2021-23133",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-23133"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)-\u003esctp.addr_wq_lock then an element is removed from the auto_asconf_splist list without any proper locking. This can be exploited by an attacker with network service privileges to escalate to root or from the context of an unprivileged user directly if a BPF_CGROUP_INET_SOCK_CREATE is attached which denies creation of some SCTP socket.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-23133",
          "url": "https://www.suse.com/security/cve/CVE-2021-23133"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184675 for CVE-2021-23133",
          "url": "https://bugzilla.suse.com/1184675"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185901 for CVE-2021-23133",
          "url": "https://bugzilla.suse.com/1185901"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-23133"
    },
    {
      "cve": "CVE-2021-26708",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-26708"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race conditions in the AF_VSOCK implementation are caused by wrong locking in net/vmw_vsock/af_vsock.c. The race conditions were implicitly introduced in the commits that added VSOCK multi-transport support.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-26708",
          "url": "https://www.suse.com/security/cve/CVE-2021-26708"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1181806 for CVE-2021-26708",
          "url": "https://bugzilla.suse.com/1181806"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1183298 for CVE-2021-26708",
          "url": "https://bugzilla.suse.com/1183298"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-26708"
    },
    {
      "cve": "CVE-2021-28971",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-28971"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c in the Linux kernel through 5.11.8 on some Haswell CPUs, userspace applications (such as perf-fuzzer) can cause a system crash because the PEBS status in a PEBS record is mishandled, aka CID-d88d05a9e0b6.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-28971",
          "url": "https://www.suse.com/security/cve/CVE-2021-28971"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184196 for CVE-2021-28971",
          "url": "https://bugzilla.suse.com/1184196"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-28971"
    },
    {
      "cve": "CVE-2021-32606",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-32606"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 5.11 through 5.12.2, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. (This does not affect earlier versions that lack CAN ISOTP SF_BROADCAST support.)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-32606",
          "url": "https://www.suse.com/security/cve/CVE-2021-32606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185953 for CVE-2021-32606",
          "url": "https://bugzilla.suse.com/1185953"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-32606"
    },
    {
      "cve": "CVE-2021-33909",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-33909"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-33909",
          "url": "https://www.suse.com/security/cve/CVE-2021-33909"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188062 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1188062"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188063 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1188063"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188257 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1188257"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189302 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1189302"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190859 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1190859"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-33909"
    },
    {
      "cve": "CVE-2021-3483",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3483"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Nosy driver in the Linux kernel. This issue allows a device to be inserted twice into a doubly-linked list, leading to a use-after-free when one of these devices is removed. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. Versions before kernel 5.12-rc6 are affected",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3483",
          "url": "https://www.suse.com/security/cve/CVE-2021-3483"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184393 for CVE-2021-3483",
          "url": "https://bugzilla.suse.com/1184393"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3483"
    },
    {
      "cve": "CVE-2021-3489",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3489"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The eBPF RINGBUF bpf_ringbuf_reserve() function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attacker to perform out-of-bounds writes within the kernel and therefore, arbitrary code execution. This issue was fixed via commit 4b81ccebaeee (\"bpf, ringbuf: Deny reserve of buffers larger than ringbuf\") (v5.13-rc4) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced via 457f44363a88 (\"bpf: Implement BPF ring buffer and verifier support for it\") (v5.8-rc1).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3489",
          "url": "https://www.suse.com/security/cve/CVE-2021-3489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185640 for CVE-2021-3489",
          "url": "https://bugzilla.suse.com/1185640"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185856 for CVE-2021-3489",
          "url": "https://bugzilla.suse.com/1185856"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3489"
    },
    {
      "cve": "CVE-2021-3490",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3490"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly update 32-bit bounds, which could be turned into out of bounds reads and writes in the Linux kernel and therefore, arbitrary code execution. This issue was fixed via commit 049c4e13714e (\"bpf: Fix alu32 const subreg bound tracking on bitwise operations\") (v5.13-rc4) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. The AND/OR issues were introduced by commit 3f50f132d840 (\"bpf: Verifier, do explicit ALU32 bounds tracking\") (5.7-rc1) and the XOR variant was introduced by 2921c90d4718 (\"bpf:Fix a verifier failure with xor\") ( 5.10-rc1).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3490",
          "url": "https://www.suse.com/security/cve/CVE-2021-3490"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185641 for CVE-2021-3490",
          "url": "https://bugzilla.suse.com/1185641"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185796 for CVE-2021-3490",
          "url": "https://bugzilla.suse.com/1185796"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3490"
    },
    {
      "cve": "CVE-2021-3491",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3491"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/\u003cPID\u003e/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b (\"io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers\") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c (\"io_uring: add IORING_OP_PROVIDE_BUFFERS\") (v5.7-rc1).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3491",
          "url": "https://www.suse.com/security/cve/CVE-2021-3491"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185642 for CVE-2021-3491",
          "url": "https://bugzilla.suse.com/1185642"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1187090 for CVE-2021-3491",
          "url": "https://bugzilla.suse.com/1187090"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3491"
    },
    {
      "cve": "CVE-2021-3640",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3640"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable faulting memory page. A privileged local user could use this flaw to crash the system or escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3640",
          "url": "https://www.suse.com/security/cve/CVE-2021-3640"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188172 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1188172"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188613 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1188613"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191530 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1191530"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196810 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1196810"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196914 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1196914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3640"
    },
    {
      "cve": "CVE-2021-3653",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3653"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the KVM\u0027s AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the \"int_ctl\" field, this issue could allow a malicious L1 to enable AVIC support (Advanced Virtual Interrupt Controller) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape. This flaw affects Linux kernel versions prior to 5.14-rc7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3653",
          "url": "https://www.suse.com/security/cve/CVE-2021-3653"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189399 for CVE-2021-3653",
          "url": "https://bugzilla.suse.com/1189399"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189420 for CVE-2021-3653",
          "url": "https://bugzilla.suse.com/1189420"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196914 for CVE-2021-3653",
          "url": "https://bugzilla.suse.com/1196914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3653"
    },
    {
      "cve": "CVE-2021-3656",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3656"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the KVM\u0027s AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the \"virt_ext\" field, this issue could allow a malicious L1 to disable both VMLOAD/VMSAVE intercepts and VLS (Virtual VMLOAD/VMSAVE) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3656",
          "url": "https://www.suse.com/security/cve/CVE-2021-3656"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189400 for CVE-2021-3656",
          "url": "https://bugzilla.suse.com/1189400"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189418 for CVE-2021-3656",
          "url": "https://bugzilla.suse.com/1189418"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3656"
    },
    {
      "cve": "CVE-2021-3744",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3744"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption). This vulnerability is similar with the older CVE-2019-18808.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3744",
          "url": "https://www.suse.com/security/cve/CVE-2021-3744"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189884 for CVE-2021-3744",
          "url": "https://bugzilla.suse.com/1189884"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190534 for CVE-2021-3744",
          "url": "https://bugzilla.suse.com/1190534"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3744"
    },
    {
      "cve": "CVE-2021-3753",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3753"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A race problem was seen in the vt_k_ioctl in drivers/tty/vt/vt_ioctl.c in the Linux kernel, which may cause an out of bounds read in vt as the write access to vc_mode is not protected by lock-in vt_ioctl (KDSETMDE). The highest threat from this vulnerability is to data confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3753",
          "url": "https://www.suse.com/security/cve/CVE-2021-3753"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190025 for CVE-2021-3753",
          "url": "https://bugzilla.suse.com/1190025"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2021-3753"
    },
    {
      "cve": "CVE-2021-37576",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-37576"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-37576",
          "url": "https://www.suse.com/security/cve/CVE-2021-37576"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188838 for CVE-2021-37576",
          "url": "https://bugzilla.suse.com/1188838"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188842 for CVE-2021-37576",
          "url": "https://bugzilla.suse.com/1188842"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190276 for CVE-2021-37576",
          "url": "https://bugzilla.suse.com/1190276"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-37576"
    },
    {
      "cve": "CVE-2021-3759",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3759"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory overflow vulnerability was found in the Linux kernel\u0027s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from this vulnerability is to system availability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3759",
          "url": "https://www.suse.com/security/cve/CVE-2021-3759"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190115 for CVE-2021-3759",
          "url": "https://bugzilla.suse.com/1190115"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3759"
    },
    {
      "cve": "CVE-2021-38166",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-38166"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In kernel/bpf/hashtab.c in the Linux kernel through 5.13.8, there is an integer overflow and out-of-bounds write when many elements are placed in a single bucket. NOTE: exploitation might be impractical without the CAP_SYS_ADMIN capability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-38166",
          "url": "https://www.suse.com/security/cve/CVE-2021-38166"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189233 for CVE-2021-38166",
          "url": "https://bugzilla.suse.com/1189233"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-38166"
    }
  ]
}

OPENSUSE-SU-2024:13704-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

kernel-devel-longterm-6.6.17-1.1 on GA media

Severity

Moderate

Notes

Title of the patch: kernel-devel-longterm-6.6.17-1.1 on GA media

Description of the patch: These are all security issues fixed in the kernel-devel-longterm-6.6.17-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-13704

CVE-2016-3695

2.2 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2017-1000251

8.8 (High)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-12153

4.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-13080

8.1 (High)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-14051

6.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-15129

6.1 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-15265

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16536

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16537

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16645

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16646

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16647

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16648

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16995

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16996

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17448

5.7 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17449

4.3 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17450

4.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17852

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17853

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17854

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17855

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17856

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17857

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17862

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-5123

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5715

7.1 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5753

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5754

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-7541

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-7542

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-8824

8.4 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-8831

6.7 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-1000004

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-10322

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-10323

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-1068

8.4 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-1118

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-12232

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-12714

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-13053

3.3 (Low)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-18710

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-19824

6.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-5332

3.6 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-5333

2.9 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-8043

0 (None)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-8087

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-8822

6.4 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-10207

5.3 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-11477

8.2 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-11478

5.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-11479

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-14615

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-14814

7.5 (High)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-14896

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-15030

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15031

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15098

5.2 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15099

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15290

5.2 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15504

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-15902

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-16231

4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-16232

4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-16234

4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-17133

8.8 (High)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-17666

5.4 (Medium)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18808

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18812

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18813

4.3 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19252

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19332

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19338

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3016

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3846

7.5 (High)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-3882

4.7 (Medium)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3887

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-6974

7.8 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-7221

7.5 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-7222

2.8 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-8564

4.2 (Medium)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-8912

7.8 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-9500

5 (Medium)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10135

5 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10766

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10767

5.9 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10768

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-12351

7.5 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-12352

3.1 (Low)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-14331

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-14386

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-24586

4.7 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-24587

4.2 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-24588

6.5 (Medium)


                        
                          CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-25639

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-25656

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-25668

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-26141

4.2 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-2732

3.2 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2020-29660

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-29661

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-8648

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-8694

5.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-23133

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-26708

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-28971

5.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-32606

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-33909

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3483

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-3489

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3490

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3491

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3542

6.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3640

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3653

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3656

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3744

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-3753

2.9 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2021-37576

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3759

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-38166

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-43976

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-0185

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-0330

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-0847

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-0886

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-1462

6.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-1516

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-1679

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-1729

8.2 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-1852

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-1966

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-1972

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-1973

7.1 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-22942

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-2308

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-24958

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-2588

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-2590

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-26490

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-28388

5.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-28389

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-28390

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-28893

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-29900

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-29901

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-29968

3.3 (Low)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-3424

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-34918

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-3628

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-3640

7.1 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-40982

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-41218

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-41674

8.8 (High)


                        
                          CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-42719

7.5 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-42720

7.5 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-42721

7.5 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-42722

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-4379

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-44032

4.3 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-44033

4.3 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-44034

6.4 (Medium)


                        
                          CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-45884

4.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-45885

4.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-45886

4.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-45887

4.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-45888

4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-45919

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-45934

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-0045

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-1076

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-1078

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2023-1192

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-1380

3.3 (Low)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2023-20569

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-20593

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-2124

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-31084

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-3141

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-3269

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2023-39192

6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-39193

5.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-4128

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-4134

4.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-4194

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-42753

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-42754

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-42756

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-4623

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2023-46813

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-4881

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-5345

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-6606

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-6610

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

839 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2016-3695/	self
https://www.suse.com/security/cve/CVE-2017-1000251/	self
https://www.suse.com/security/cve/CVE-2017-12153/	self
https://www.suse.com/security/cve/CVE-2017-13080/	self
https://www.suse.com/security/cve/CVE-2017-14051/	self
https://www.suse.com/security/cve/CVE-2017-15129/	self
https://www.suse.com/security/cve/CVE-2017-15265/	self
https://www.suse.com/security/cve/CVE-2017-16536/	self
https://www.suse.com/security/cve/CVE-2017-16537/	self
https://www.suse.com/security/cve/CVE-2017-16645/	self
https://www.suse.com/security/cve/CVE-2017-16646/	self
https://www.suse.com/security/cve/CVE-2017-16647/	self
https://www.suse.com/security/cve/CVE-2017-16648/	self
https://www.suse.com/security/cve/CVE-2017-16995/	self
https://www.suse.com/security/cve/CVE-2017-16996/	self
https://www.suse.com/security/cve/CVE-2017-17448/	self
https://www.suse.com/security/cve/CVE-2017-17449/	self
https://www.suse.com/security/cve/CVE-2017-17450/	self
https://www.suse.com/security/cve/CVE-2017-17852/	self
https://www.suse.com/security/cve/CVE-2017-17853/	self
https://www.suse.com/security/cve/CVE-2017-17854/	self
https://www.suse.com/security/cve/CVE-2017-17855/	self
https://www.suse.com/security/cve/CVE-2017-17856/	self
https://www.suse.com/security/cve/CVE-2017-17857/	self
https://www.suse.com/security/cve/CVE-2017-17862/	self
https://www.suse.com/security/cve/CVE-2017-5123/	self
https://www.suse.com/security/cve/CVE-2017-5715/	self
https://www.suse.com/security/cve/CVE-2017-5753/	self
https://www.suse.com/security/cve/CVE-2017-5754/	self
https://www.suse.com/security/cve/CVE-2017-7541/	self
https://www.suse.com/security/cve/CVE-2017-7542/	self
https://www.suse.com/security/cve/CVE-2017-8824/	self
https://www.suse.com/security/cve/CVE-2017-8831/	self
https://www.suse.com/security/cve/CVE-2018-1000004/	self
https://www.suse.com/security/cve/CVE-2018-10322/	self
https://www.suse.com/security/cve/CVE-2018-10323/	self
https://www.suse.com/security/cve/CVE-2018-1068/	self
https://www.suse.com/security/cve/CVE-2018-1118/	self
https://www.suse.com/security/cve/CVE-2018-12232/	self
https://www.suse.com/security/cve/CVE-2018-12714/	self
https://www.suse.com/security/cve/CVE-2018-13053/	self
https://www.suse.com/security/cve/CVE-2018-18710/	self
https://www.suse.com/security/cve/CVE-2018-19824/	self
https://www.suse.com/security/cve/CVE-2018-5332/	self
https://www.suse.com/security/cve/CVE-2018-5333/	self
https://www.suse.com/security/cve/CVE-2018-8043/	self
https://www.suse.com/security/cve/CVE-2018-8087/	self
https://www.suse.com/security/cve/CVE-2018-8822/	self
https://www.suse.com/security/cve/CVE-2019-10207/	self
https://www.suse.com/security/cve/CVE-2019-11477/	self
https://www.suse.com/security/cve/CVE-2019-11478/	self
https://www.suse.com/security/cve/CVE-2019-11479/	self
https://www.suse.com/security/cve/CVE-2019-14615/	self
https://www.suse.com/security/cve/CVE-2019-14814/	self
https://www.suse.com/security/cve/CVE-2019-14896/	self
https://www.suse.com/security/cve/CVE-2019-15030/	self
https://www.suse.com/security/cve/CVE-2019-15031/	self
https://www.suse.com/security/cve/CVE-2019-15098/	self
https://www.suse.com/security/cve/CVE-2019-15099/	self
https://www.suse.com/security/cve/CVE-2019-15290/	self
https://www.suse.com/security/cve/CVE-2019-15504/	self
https://www.suse.com/security/cve/CVE-2019-15902/	self
https://www.suse.com/security/cve/CVE-2019-16231/	self
https://www.suse.com/security/cve/CVE-2019-16232/	self
https://www.suse.com/security/cve/CVE-2019-16234/	self
https://www.suse.com/security/cve/CVE-2019-17133/	self
https://www.suse.com/security/cve/CVE-2019-17666/	self
https://www.suse.com/security/cve/CVE-2019-18808/	self
https://www.suse.com/security/cve/CVE-2019-18812/	self
https://www.suse.com/security/cve/CVE-2019-18813/	self
https://www.suse.com/security/cve/CVE-2019-19252/	self
https://www.suse.com/security/cve/CVE-2019-19332/	self
https://www.suse.com/security/cve/CVE-2019-19338/	self
https://www.suse.com/security/cve/CVE-2019-3016/	self
https://www.suse.com/security/cve/CVE-2019-3846/	self
https://www.suse.com/security/cve/CVE-2019-3882/	self
https://www.suse.com/security/cve/CVE-2019-3887/	self
https://www.suse.com/security/cve/CVE-2019-6974/	self
https://www.suse.com/security/cve/CVE-2019-7221/	self
https://www.suse.com/security/cve/CVE-2019-7222/	self
https://www.suse.com/security/cve/CVE-2019-8564/	self
https://www.suse.com/security/cve/CVE-2019-8912/	self
https://www.suse.com/security/cve/CVE-2019-9500/	self
https://www.suse.com/security/cve/CVE-2020-10135/	self
https://www.suse.com/security/cve/CVE-2020-10766/	self
https://www.suse.com/security/cve/CVE-2020-10767/	self
https://www.suse.com/security/cve/CVE-2020-10768/	self
https://www.suse.com/security/cve/CVE-2020-12351/	self
https://www.suse.com/security/cve/CVE-2020-12352/	self
https://www.suse.com/security/cve/CVE-2020-14331/	self
https://www.suse.com/security/cve/CVE-2020-14386/	self
https://www.suse.com/security/cve/CVE-2020-24586/	self
https://www.suse.com/security/cve/CVE-2020-24587/	self
https://www.suse.com/security/cve/CVE-2020-24588/	self
https://www.suse.com/security/cve/CVE-2020-25639/	self
https://www.suse.com/security/cve/CVE-2020-25656/	self
https://www.suse.com/security/cve/CVE-2020-25668/	self
https://www.suse.com/security/cve/CVE-2020-26141/	self
https://www.suse.com/security/cve/CVE-2020-2732/	self
https://www.suse.com/security/cve/CVE-2020-29660/	self
https://www.suse.com/security/cve/CVE-2020-29661/	self
https://www.suse.com/security/cve/CVE-2020-8648/	self
https://www.suse.com/security/cve/CVE-2020-8694/	self
https://www.suse.com/security/cve/CVE-2021-23133/	self
https://www.suse.com/security/cve/CVE-2021-26708/	self
https://www.suse.com/security/cve/CVE-2021-28971/	self
https://www.suse.com/security/cve/CVE-2021-32606/	self
https://www.suse.com/security/cve/CVE-2021-33909/	self
https://www.suse.com/security/cve/CVE-2021-3483/	self
https://www.suse.com/security/cve/CVE-2021-3489/	self
https://www.suse.com/security/cve/CVE-2021-3490/	self
https://www.suse.com/security/cve/CVE-2021-3491/	self
https://www.suse.com/security/cve/CVE-2021-3542/	self
https://www.suse.com/security/cve/CVE-2021-3640/	self
https://www.suse.com/security/cve/CVE-2021-3653/	self
https://www.suse.com/security/cve/CVE-2021-3656/	self
https://www.suse.com/security/cve/CVE-2021-3744/	self
https://www.suse.com/security/cve/CVE-2021-3753/	self
https://www.suse.com/security/cve/CVE-2021-37576/	self
https://www.suse.com/security/cve/CVE-2021-3759/	self
https://www.suse.com/security/cve/CVE-2021-38166/	self
https://www.suse.com/security/cve/CVE-2021-43976/	self
https://www.suse.com/security/cve/CVE-2022-0185/	self
https://www.suse.com/security/cve/CVE-2022-0330/	self
https://www.suse.com/security/cve/CVE-2022-0847/	self
https://www.suse.com/security/cve/CVE-2022-0886/	self
https://www.suse.com/security/cve/CVE-2022-1462/	self
https://www.suse.com/security/cve/CVE-2022-1516/	self
https://www.suse.com/security/cve/CVE-2022-1679/	self
https://www.suse.com/security/cve/CVE-2022-1729/	self
https://www.suse.com/security/cve/CVE-2022-1852/	self
https://www.suse.com/security/cve/CVE-2022-1966/	self
https://www.suse.com/security/cve/CVE-2022-1972/	self
https://www.suse.com/security/cve/CVE-2022-1973/	self
https://www.suse.com/security/cve/CVE-2022-22942/	self
https://www.suse.com/security/cve/CVE-2022-2308/	self
https://www.suse.com/security/cve/CVE-2022-24958/	self
https://www.suse.com/security/cve/CVE-2022-2588/	self
https://www.suse.com/security/cve/CVE-2022-2590/	self
https://www.suse.com/security/cve/CVE-2022-26490/	self
https://www.suse.com/security/cve/CVE-2022-28388/	self
https://www.suse.com/security/cve/CVE-2022-28389/	self
https://www.suse.com/security/cve/CVE-2022-28390/	self
https://www.suse.com/security/cve/CVE-2022-28893/	self
https://www.suse.com/security/cve/CVE-2022-29900/	self
https://www.suse.com/security/cve/CVE-2022-29901/	self
https://www.suse.com/security/cve/CVE-2022-29968/	self
https://www.suse.com/security/cve/CVE-2022-3424/	self
https://www.suse.com/security/cve/CVE-2022-34918/	self
https://www.suse.com/security/cve/CVE-2022-3628/	self
https://www.suse.com/security/cve/CVE-2022-3640/	self
https://www.suse.com/security/cve/CVE-2022-40982/	self
https://www.suse.com/security/cve/CVE-2022-41218/	self
https://www.suse.com/security/cve/CVE-2022-41674/	self
https://www.suse.com/security/cve/CVE-2022-42719/	self
https://www.suse.com/security/cve/CVE-2022-42720/	self
https://www.suse.com/security/cve/CVE-2022-42721/	self
https://www.suse.com/security/cve/CVE-2022-42722/	self
https://www.suse.com/security/cve/CVE-2022-4379/	self
https://www.suse.com/security/cve/CVE-2022-44032/	self
https://www.suse.com/security/cve/CVE-2022-44033/	self
https://www.suse.com/security/cve/CVE-2022-44034/	self
https://www.suse.com/security/cve/CVE-2022-45884/	self
https://www.suse.com/security/cve/CVE-2022-45885/	self
https://www.suse.com/security/cve/CVE-2022-45886/	self
https://www.suse.com/security/cve/CVE-2022-45887/	self
https://www.suse.com/security/cve/CVE-2022-45888/	self
https://www.suse.com/security/cve/CVE-2022-45919/	self
https://www.suse.com/security/cve/CVE-2022-45934/	self
https://www.suse.com/security/cve/CVE-2023-0045/	self
https://www.suse.com/security/cve/CVE-2023-1076/	self
https://www.suse.com/security/cve/CVE-2023-1078/	self
https://www.suse.com/security/cve/CVE-2023-1192/	self
https://www.suse.com/security/cve/CVE-2023-1380/	self
https://www.suse.com/security/cve/CVE-2023-20569/	self
https://www.suse.com/security/cve/CVE-2023-20593/	self
https://www.suse.com/security/cve/CVE-2023-2124/	self
https://www.suse.com/security/cve/CVE-2023-31084/	self
https://www.suse.com/security/cve/CVE-2023-3141/	self
https://www.suse.com/security/cve/CVE-2023-3269/	self
https://www.suse.com/security/cve/CVE-2023-39192/	self
https://www.suse.com/security/cve/CVE-2023-39193/	self
https://www.suse.com/security/cve/CVE-2023-4128/	self
https://www.suse.com/security/cve/CVE-2023-4134/	self
https://www.suse.com/security/cve/CVE-2023-4194/	self
https://www.suse.com/security/cve/CVE-2023-42753/	self
https://www.suse.com/security/cve/CVE-2023-42754/	self
https://www.suse.com/security/cve/CVE-2023-42756/	self
https://www.suse.com/security/cve/CVE-2023-4623/	self
https://www.suse.com/security/cve/CVE-2023-46813/	self
https://www.suse.com/security/cve/CVE-2023-4881/	self
https://www.suse.com/security/cve/CVE-2023-5345/	self
https://www.suse.com/security/cve/CVE-2023-6606/	self
https://www.suse.com/security/cve/CVE-2023-6610/	self
https://www.suse.com/security/cve/CVE-2016-3695	external
https://bugzilla.suse.com/1023051	external
https://www.suse.com/security/cve/CVE-2017-1000251	external
https://bugzilla.suse.com/1057389	external
https://bugzilla.suse.com/1057950	external
https://bugzilla.suse.com/1070535	external
https://bugzilla.suse.com/1072117	external
https://bugzilla.suse.com/1072162	external
https://bugzilla.suse.com/1120758	external
https://www.suse.com/security/cve/CVE-2017-12153	external
https://bugzilla.suse.com/1058410	external
https://bugzilla.suse.com/1058624	external
https://www.suse.com/security/cve/CVE-2017-13080	external
https://bugzilla.suse.com/1056061	external
https://bugzilla.suse.com/1063479	external
https://bugzilla.suse.com/1063667	external
https://bugzilla.suse.com/1063671	external
https://bugzilla.suse.com/1066295	external
https://bugzilla.suse.com/1105108	external
https://bugzilla.suse.com/1178872	external
https://bugzilla.suse.com/1179588	external
https://www.suse.com/security/cve/CVE-2017-14051	external
https://bugzilla.suse.com/1056588	external
https://www.suse.com/security/cve/CVE-2017-15129	external
https://bugzilla.suse.com/1074839	external
https://www.suse.com/security/cve/CVE-2017-15265	external
https://bugzilla.suse.com/1062520	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2017-16536	external
https://bugzilla.suse.com/1066606	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16537	external
https://bugzilla.suse.com/1066573	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16645	external
https://bugzilla.suse.com/1067132	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16646	external
https://bugzilla.suse.com/1067105	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16647	external
https://bugzilla.suse.com/1067102	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16648	external
https://bugzilla.suse.com/1067087	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16995	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-16996	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17448	external
https://bugzilla.suse.com/1071693	external
https://www.suse.com/security/cve/CVE-2017-17449	external
https://bugzilla.suse.com/1071694	external
https://www.suse.com/security/cve/CVE-2017-17450	external
https://bugzilla.suse.com/1071695	external
https://bugzilla.suse.com/1074033	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2017-17852	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17853	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17854	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17855	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17856	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17857	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17862	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-5123	external
https://bugzilla.suse.com/1062473	external
https://bugzilla.suse.com/1122971	external
https://www.suse.com/security/cve/CVE-2017-5715	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1074741	external
https://bugzilla.suse.com/1074919	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075007	external
https://bugzilla.suse.com/1075262	external
https://bugzilla.suse.com/1075419	external
https://bugzilla.suse.com/1076115	external
https://bugzilla.suse.com/1076372	external
https://bugzilla.suse.com/1076606	external
https://bugzilla.suse.com/1078353	external
https://bugzilla.suse.com/1080039	external
https://bugzilla.suse.com/1087887	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1088147	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1095735	external
https://bugzilla.suse.com/1102517	external
https://bugzilla.suse.com/1105108	external
https://bugzilla.suse.com/1126516	external
https://bugzilla.suse.com/1173489	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201457	external
https://bugzilla.suse.com/1201877	external
https://bugzilla.suse.com/1203236	external
https://www.suse.com/security/cve/CVE-2017-5753	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075419	external
https://bugzilla.suse.com/1075748	external
https://bugzilla.suse.com/1080039	external
https://bugzilla.suse.com/1087084	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1136865	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201877	external
https://bugzilla.suse.com/1209547	external
https://www.suse.com/security/cve/CVE-2017-5754	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075008	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1115045	external
https://bugzilla.suse.com/1136865	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201877	external
https://www.suse.com/security/cve/CVE-2017-7541	external
https://bugzilla.suse.com/1049645	external
https://www.suse.com/security/cve/CVE-2017-7542	external
https://bugzilla.suse.com/1049882	external
https://bugzilla.suse.com/1061936	external
https://www.suse.com/security/cve/CVE-2017-8824	external
https://bugzilla.suse.com/1070771	external
https://bugzilla.suse.com/1076734	external
https://bugzilla.suse.com/1092904	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2017-8831	external
https://bugzilla.suse.com/1037994	external
https://bugzilla.suse.com/1061936	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-1000004	external
https://bugzilla.suse.com/1076017	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2018-10322	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1090749	external
https://www.suse.com/security/cve/CVE-2018-10323	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1090717	external
https://www.suse.com/security/cve/CVE-2018-1068	external
https://bugzilla.suse.com/1085107	external
https://bugzilla.suse.com/1085114	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1123903	external
https://www.suse.com/security/cve/CVE-2018-1118	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1092472	external
https://www.suse.com/security/cve/CVE-2018-12232	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1097593	external
https://bugzilla.suse.com/1125907	external
https://bugzilla.suse.com/1127757	external
https://www.suse.com/security/cve/CVE-2018-12714	external
https://bugzilla.suse.com/1098933	external
https://www.suse.com/security/cve/CVE-2018-13053	external
https://bugzilla.suse.com/1099924	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-18710	external
https://bugzilla.suse.com/1113751	external
https://www.suse.com/security/cve/CVE-2018-19824	external
https://bugzilla.suse.com/1118152	external
https://www.suse.com/security/cve/CVE-2018-5332	external
https://bugzilla.suse.com/1075621	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-5333	external
https://bugzilla.suse.com/1075617	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2018-8043	external
https://bugzilla.suse.com/1084829	external
https://www.suse.com/security/cve/CVE-2018-8087	external
https://bugzilla.suse.com/1085053	external
https://www.suse.com/security/cve/CVE-2018-8822	external
https://bugzilla.suse.com/1086162	external
https://bugzilla.suse.com/1090404	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2019-10207	external
https://bugzilla.suse.com/1123959	external
https://bugzilla.suse.com/1142857	external
https://www.suse.com/security/cve/CVE-2019-11477	external
https://bugzilla.suse.com/1132686	external
https://bugzilla.suse.com/1137586	external
https://bugzilla.suse.com/1142129	external
https://bugzilla.suse.com/1153242	external
https://www.suse.com/security/cve/CVE-2019-11478	external
https://bugzilla.suse.com/1132686	external
https://bugzilla.suse.com/1137586	external
https://bugzilla.suse.com/1142129	external
https://bugzilla.suse.com/1143542	external
https://www.suse.com/security/cve/CVE-2019-11479	external
https://bugzilla.suse.com/1132686	external
https://bugzilla.suse.com/1137586	external
https://bugzilla.suse.com/1142129	external
https://bugzilla.suse.com/1143542	external
https://www.suse.com/security/cve/CVE-2019-14615	external
https://bugzilla.suse.com/1160195	external
https://bugzilla.suse.com/1165881	external
https://www.suse.com/security/cve/CVE-2019-14814	external
https://bugzilla.suse.com/1146512	external
https://bugzilla.suse.com/1173664	external
https://bugzilla.suse.com/1173665	external
https://www.suse.com/security/cve/CVE-2019-14896	external
https://bugzilla.suse.com/1157157	external
https://bugzilla.suse.com/1160468	external
https://www.suse.com/security/cve/CVE-2019-15030	external
https://bugzilla.suse.com/1149713	external
https://www.suse.com/security/cve/CVE-2019-15031	external
https://bugzilla.suse.com/1149713	external
https://www.suse.com/security/cve/CVE-2019-15098	external
https://bugzilla.suse.com/1146378	external
https://bugzilla.suse.com/1146543	external
https://www.suse.com/security/cve/CVE-2019-15099	external
https://bugzilla.suse.com/1146368	external
https://www.suse.com/security/cve/CVE-2019-15290	external
https://bugzilla.suse.com/1146378	external
https://bugzilla.suse.com/1146519	external
https://bugzilla.suse.com/1146543	external
https://bugzilla.suse.com/1158381	external
https://bugzilla.suse.com/1158834	external
https://www.suse.com/security/cve/CVE-2019-15504	external
https://bugzilla.suse.com/1147116	external
https://bugzilla.suse.com/1185852	external
https://www.suse.com/security/cve/CVE-2019-15902	external
https://bugzilla.suse.com/1149376	external
https://bugzilla.suse.com/1155131	external
https://www.suse.com/security/cve/CVE-2019-16231	external
https://bugzilla.suse.com/1150466	external
https://www.suse.com/security/cve/CVE-2019-16232	external
https://bugzilla.suse.com/1150465	external
https://www.suse.com/security/cve/CVE-2019-16234	external
https://bugzilla.suse.com/1150452	external
https://www.suse.com/security/cve/CVE-2019-17133	external
https://bugzilla.suse.com/1153158	external
https://bugzilla.suse.com/1153161	external
https://www.suse.com/security/cve/CVE-2019-17666	external
https://bugzilla.suse.com/1154372	external
https://www.suse.com/security/cve/CVE-2019-18808	external
https://bugzilla.suse.com/1156259	external
https://bugzilla.suse.com/1189884	external
https://bugzilla.suse.com/1190534	external
https://www.suse.com/security/cve/CVE-2019-18812	external
https://bugzilla.suse.com/1156277	external
https://www.suse.com/security/cve/CVE-2019-18813	external
https://bugzilla.suse.com/1156278	external
https://www.suse.com/security/cve/CVE-2019-19252	external
https://bugzilla.suse.com/1157813	external
https://www.suse.com/security/cve/CVE-2019-19332	external
https://bugzilla.suse.com/1158827	external
https://www.suse.com/security/cve/CVE-2019-19338	external
https://bugzilla.suse.com/1158954	external
https://www.suse.com/security/cve/CVE-2019-3016	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1161154	external
https://www.suse.com/security/cve/CVE-2019-3846	external
https://bugzilla.suse.com/1136424	external
https://bugzilla.suse.com/1136446	external
https://bugzilla.suse.com/1156330	external
https://www.suse.com/security/cve/CVE-2019-3882	external
https://bugzilla.suse.com/1131416	external
https://bugzilla.suse.com/1131427	external
https://bugzilla.suse.com/1133319	external
https://www.suse.com/security/cve/CVE-2019-3887	external
https://bugzilla.suse.com/1131800	external
https://www.suse.com/security/cve/CVE-2019-6974	external
https://bugzilla.suse.com/1124728	external
https://bugzilla.suse.com/1124729	external
https://www.suse.com/security/cve/CVE-2019-7221	external
https://bugzilla.suse.com/1124732	external
https://bugzilla.suse.com/1124734	external
https://www.suse.com/security/cve/CVE-2019-7222	external
https://bugzilla.suse.com/1124735	external
https://www.suse.com/security/cve/CVE-2019-8564	external
https://bugzilla.suse.com/1132673	external
https://bugzilla.suse.com/1132828	external
https://www.suse.com/security/cve/CVE-2019-8912	external
https://bugzilla.suse.com/1125907	external
https://bugzilla.suse.com/1126284	external
https://www.suse.com/security/cve/CVE-2019-9500	external
https://bugzilla.suse.com/1132681	external
https://www.suse.com/security/cve/CVE-2020-10135	external
https://bugzilla.suse.com/1171988	external
https://www.suse.com/security/cve/CVE-2020-10766	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1172781	external
https://www.suse.com/security/cve/CVE-2020-10767	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1172782	external
https://www.suse.com/security/cve/CVE-2020-10768	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1172783	external
https://www.suse.com/security/cve/CVE-2020-12351	external
https://bugzilla.suse.com/1177724	external
https://bugzilla.suse.com/1177729	external
https://bugzilla.suse.com/1178397	external
https://www.suse.com/security/cve/CVE-2020-12352	external
https://bugzilla.suse.com/1177725	external
https://bugzilla.suse.com/1178398	external
https://www.suse.com/security/cve/CVE-2020-14331	external
https://bugzilla.suse.com/1174205	external
https://bugzilla.suse.com/1174247	external
https://www.suse.com/security/cve/CVE-2020-14386	external
https://bugzilla.suse.com/1176069	external
https://bugzilla.suse.com/1176072	external
https://www.suse.com/security/cve/CVE-2020-24586	external
https://bugzilla.suse.com/1185859	external
https://bugzilla.suse.com/1192868	external
https://www.suse.com/security/cve/CVE-2020-24587	external
https://bugzilla.suse.com/1185859	external
https://bugzilla.suse.com/1185862	external
https://bugzilla.suse.com/1192868	external
https://www.suse.com/security/cve/CVE-2020-24588	external
https://bugzilla.suse.com/1185861	external
https://bugzilla.suse.com/1192868	external
https://bugzilla.suse.com/1199701	external
https://www.suse.com/security/cve/CVE-2020-25639	external
https://bugzilla.suse.com/1176846	external
https://www.suse.com/security/cve/CVE-2020-25656	external
https://bugzilla.suse.com/1177766	external
https://www.suse.com/security/cve/CVE-2020-25668	external
https://bugzilla.suse.com/1178123	external
https://bugzilla.suse.com/1178622	external
https://bugzilla.suse.com/1196914	external
https://www.suse.com/security/cve/CVE-2020-26141	external
https://bugzilla.suse.com/1185987	external
https://www.suse.com/security/cve/CVE-2020-2732	external
https://bugzilla.suse.com/1163971	external
https://www.suse.com/security/cve/CVE-2020-29660	external
https://bugzilla.suse.com/1179745	external
https://bugzilla.suse.com/1179877	external
https://www.suse.com/security/cve/CVE-2020-29661	external
https://bugzilla.suse.com/1179745	external
https://bugzilla.suse.com/1179877	external
https://bugzilla.suse.com/1214268	external
https://bugzilla.suse.com/1218966	external
https://www.suse.com/security/cve/CVE-2020-8648	external
https://bugzilla.suse.com/1162928	external
https://www.suse.com/security/cve/CVE-2020-8694	external
https://bugzilla.suse.com/1170415	external
https://bugzilla.suse.com/1170446	external
https://bugzilla.suse.com/1178591	external
https://bugzilla.suse.com/1178700	external
https://bugzilla.suse.com/1179661	external
https://www.suse.com/security/cve/CVE-2021-23133	external
https://bugzilla.suse.com/1184675	external
https://bugzilla.suse.com/1185901	external
https://www.suse.com/security/cve/CVE-2021-26708	external
https://bugzilla.suse.com/1181806	external
https://bugzilla.suse.com/1183298	external
https://www.suse.com/security/cve/CVE-2021-28971	external
https://bugzilla.suse.com/1184196	external
https://www.suse.com/security/cve/CVE-2021-32606	external
https://bugzilla.suse.com/1185953	external
https://www.suse.com/security/cve/CVE-2021-33909	external
https://bugzilla.suse.com/1188062	external
https://bugzilla.suse.com/1188063	external
https://bugzilla.suse.com/1188257	external
https://bugzilla.suse.com/1189302	external
https://bugzilla.suse.com/1190859	external
https://www.suse.com/security/cve/CVE-2021-3483	external
https://bugzilla.suse.com/1184393	external
https://www.suse.com/security/cve/CVE-2021-3489	external
https://bugzilla.suse.com/1185640	external
https://bugzilla.suse.com/1185856	external
https://www.suse.com/security/cve/CVE-2021-3490	external
https://bugzilla.suse.com/1185641	external
https://bugzilla.suse.com/1185796	external
https://www.suse.com/security/cve/CVE-2021-3491	external
https://bugzilla.suse.com/1185642	external
https://bugzilla.suse.com/1187090	external
https://www.suse.com/security/cve/CVE-2021-3542	external
https://bugzilla.suse.com/1184673	external
https://bugzilla.suse.com/1186063	external
https://www.suse.com/security/cve/CVE-2021-3640	external
https://bugzilla.suse.com/1188172	external
https://bugzilla.suse.com/1188613	external
https://bugzilla.suse.com/1191530	external
https://bugzilla.suse.com/1196810	external
https://bugzilla.suse.com/1196914	external
https://www.suse.com/security/cve/CVE-2021-3653	external
https://bugzilla.suse.com/1189399	external
https://bugzilla.suse.com/1189420	external
https://bugzilla.suse.com/1196914	external
https://www.suse.com/security/cve/CVE-2021-3656	external
https://bugzilla.suse.com/1189400	external
https://bugzilla.suse.com/1189418	external
https://www.suse.com/security/cve/CVE-2021-3744	external
https://bugzilla.suse.com/1189884	external
https://bugzilla.suse.com/1190534	external
https://www.suse.com/security/cve/CVE-2021-3753	external
https://bugzilla.suse.com/1190025	external
https://www.suse.com/security/cve/CVE-2021-37576	external
https://bugzilla.suse.com/1188838	external
https://bugzilla.suse.com/1188842	external
https://bugzilla.suse.com/1190276	external
https://www.suse.com/security/cve/CVE-2021-3759	external
https://bugzilla.suse.com/1190115	external
https://www.suse.com/security/cve/CVE-2021-38166	external
https://bugzilla.suse.com/1189233	external
https://www.suse.com/security/cve/CVE-2021-43976	external
https://bugzilla.suse.com/1192847	external
https://www.suse.com/security/cve/CVE-2022-0185	external
https://bugzilla.suse.com/1194517	external
https://bugzilla.suse.com/1194737	external
https://www.suse.com/security/cve/CVE-2022-0330	external
https://bugzilla.suse.com/1194880	external
https://bugzilla.suse.com/1195950	external
https://www.suse.com/security/cve/CVE-2022-0847	external
https://bugzilla.suse.com/1196584	external
https://bugzilla.suse.com/1196601	external
https://www.suse.com/security/cve/CVE-2022-0886	external
https://bugzilla.suse.com/1197131	external
https://bugzilla.suse.com/1197133	external
https://www.suse.com/security/cve/CVE-2022-1462	external
https://bugzilla.suse.com/1198829	external
https://www.suse.com/security/cve/CVE-2022-1516	external
https://bugzilla.suse.com/1199012	external
https://www.suse.com/security/cve/CVE-2022-1679	external
https://bugzilla.suse.com/1199487	external
https://bugzilla.suse.com/1201080	external
https://bugzilla.suse.com/1201832	external
https://bugzilla.suse.com/1204132	external
https://bugzilla.suse.com/1212316	external
https://www.suse.com/security/cve/CVE-2022-1729	external
https://bugzilla.suse.com/1199507	external
https://bugzilla.suse.com/1199697	external
https://bugzilla.suse.com/1201832	external
https://www.suse.com/security/cve/CVE-2022-1852	external
https://bugzilla.suse.com/1199875	external
https://www.suse.com/security/cve/CVE-2022-1966	external
https://bugzilla.suse.com/1200015	external
https://bugzilla.suse.com/1200268	external
https://bugzilla.suse.com/1200494	external
https://bugzilla.suse.com/1200529	external
https://www.suse.com/security/cve/CVE-2022-1972	external
https://bugzilla.suse.com/1200019	external
https://bugzilla.suse.com/1200266	external
https://www.suse.com/security/cve/CVE-2022-1973	external
https://bugzilla.suse.com/1200023	external
https://www.suse.com/security/cve/CVE-2022-22942	external
https://bugzilla.suse.com/1195065	external
https://bugzilla.suse.com/1195951	external
https://www.suse.com/security/cve/CVE-2022-2308	external
https://bugzilla.suse.com/1202573	external
https://www.suse.com/security/cve/CVE-2022-24958	external
https://bugzilla.suse.com/1195905	external
https://www.suse.com/security/cve/CVE-2022-2588	external
https://bugzilla.suse.com/1202096	external
https://bugzilla.suse.com/1203613	external
https://bugzilla.suse.com/1204183	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-2590	external
https://bugzilla.suse.com/1202013	external
https://bugzilla.suse.com/1202089	external
https://www.suse.com/security/cve/CVE-2022-26490	external
https://bugzilla.suse.com/1196830	external
https://bugzilla.suse.com/1201656	external
https://bugzilla.suse.com/1201969	external
https://bugzilla.suse.com/1211495	external
https://www.suse.com/security/cve/CVE-2022-28388	external
https://bugzilla.suse.com/1198032	external
https://www.suse.com/security/cve/CVE-2022-28389	external
https://bugzilla.suse.com/1198033	external
https://bugzilla.suse.com/1201657	external
https://www.suse.com/security/cve/CVE-2022-28390	external
https://bugzilla.suse.com/1198031	external
https://bugzilla.suse.com/1201517	external
https://bugzilla.suse.com/1207969	external
https://www.suse.com/security/cve/CVE-2022-28893	external
https://bugzilla.suse.com/1198330	external
https://www.suse.com/security/cve/CVE-2022-29900	external
https://bugzilla.suse.com/1199657	external
https://bugzilla.suse.com/1201469	external
https://bugzilla.suse.com/1207894	external
https://www.suse.com/security/cve/CVE-2022-29901	external
https://bugzilla.suse.com/1201469	external
https://bugzilla.suse.com/1207894	external
https://www.suse.com/security/cve/CVE-2022-29968	external
https://bugzilla.suse.com/1199087	external
https://www.suse.com/security/cve/CVE-2022-3424	external
https://bugzilla.suse.com/1204166	external
https://bugzilla.suse.com/1204167	external
https://bugzilla.suse.com/1208044	external
https://bugzilla.suse.com/1212309	external
https://www.suse.com/security/cve/CVE-2022-34918	external
https://bugzilla.suse.com/1201171	external
https://bugzilla.suse.com/1201177	external
https://bugzilla.suse.com/1201222	external
https://www.suse.com/security/cve/CVE-2022-3628	external
https://bugzilla.suse.com/1204868	external
https://www.suse.com/security/cve/CVE-2022-3640	external
https://bugzilla.suse.com/1204619	external
https://bugzilla.suse.com/1204624	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-40982	external
https://bugzilla.suse.com/1206418	external
https://bugzilla.suse.com/1215674	external
https://www.suse.com/security/cve/CVE-2022-41218	external
https://bugzilla.suse.com/1202960	external
https://bugzilla.suse.com/1203606	external
https://bugzilla.suse.com/1205313	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-41674	external
https://bugzilla.suse.com/1203770	external
https://bugzilla.suse.com/1203994	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-42719	external
https://bugzilla.suse.com/1204051	external
https://bugzilla.suse.com/1204292	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-42720	external
https://bugzilla.suse.com/1204059	external
https://bugzilla.suse.com/1204291	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-42721	external
https://bugzilla.suse.com/1204060	external
https://bugzilla.suse.com/1204290	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-42722	external
https://bugzilla.suse.com/1204125	external
https://bugzilla.suse.com/1204289	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-4379	external
https://bugzilla.suse.com/1206209	external
https://bugzilla.suse.com/1206373	external
https://www.suse.com/security/cve/CVE-2022-44032	external
https://bugzilla.suse.com/1204894	external
https://bugzilla.suse.com/1212290	external
https://www.suse.com/security/cve/CVE-2022-44033	external
https://bugzilla.suse.com/1204922	external
https://bugzilla.suse.com/1212306	external
https://www.suse.com/security/cve/CVE-2022-44034	external
https://bugzilla.suse.com/1204901	external
https://www.suse.com/security/cve/CVE-2022-45884	external
https://bugzilla.suse.com/1205756	external
https://www.suse.com/security/cve/CVE-2022-45885	external
https://bugzilla.suse.com/1205758	external
https://www.suse.com/security/cve/CVE-2022-45886	external
https://bugzilla.suse.com/1205760	external
https://www.suse.com/security/cve/CVE-2022-45887	external
https://bugzilla.suse.com/1205762	external
https://bugzilla.suse.com/1220015	external
https://www.suse.com/security/cve/CVE-2022-45888	external
https://bugzilla.suse.com/1205764	external
https://www.suse.com/security/cve/CVE-2022-45919	external
https://bugzilla.suse.com/1205803	external
https://bugzilla.suse.com/1208912	external
https://bugzilla.suse.com/1214128	external
https://bugzilla.suse.com/1215674	external
https://www.suse.com/security/cve/CVE-2022-45934	external
https://bugzilla.suse.com/1205796	external
https://bugzilla.suse.com/1212292	external
https://www.suse.com/security/cve/CVE-2023-0045	external
https://bugzilla.suse.com/1207773	external
https://www.suse.com/security/cve/CVE-2023-1076	external
https://bugzilla.suse.com/1208599	external
https://bugzilla.suse.com/1214019	external
https://www.suse.com/security/cve/CVE-2023-1078	external
https://bugzilla.suse.com/1208601	external
https://bugzilla.suse.com/1208603	external
https://www.suse.com/security/cve/CVE-2023-1192	external
https://bugzilla.suse.com/1208995	external
https://www.suse.com/security/cve/CVE-2023-1380	external
https://bugzilla.suse.com/1209287	external
https://www.suse.com/security/cve/CVE-2023-20569	external
https://bugzilla.suse.com/1213287	external
https://www.suse.com/security/cve/CVE-2023-20593	external
https://bugzilla.suse.com/1213286	external
https://bugzilla.suse.com/1213616	external
https://bugzilla.suse.com/1215674	external
https://www.suse.com/security/cve/CVE-2023-2124	external
https://bugzilla.suse.com/1210498	external
https://www.suse.com/security/cve/CVE-2023-31084	external
https://bugzilla.suse.com/1210783	external
https://www.suse.com/security/cve/CVE-2023-3141	external
https://bugzilla.suse.com/1212129	external
https://bugzilla.suse.com/1215674	external
https://www.suse.com/security/cve/CVE-2023-3269	external
https://bugzilla.suse.com/1212395	external
https://bugzilla.suse.com/1213760	external
https://www.suse.com/security/cve/CVE-2023-39192	external
https://bugzilla.suse.com/1215858	external
https://bugzilla.suse.com/1220015	external
https://www.suse.com/security/cve/CVE-2023-39193	external
https://bugzilla.suse.com/1215860	external
https://bugzilla.suse.com/1220015	external
https://www.suse.com/security/cve/CVE-2023-4128	external
https://bugzilla.suse.com/1214149	external
https://www.suse.com/security/cve/CVE-2023-4134	external
https://bugzilla.suse.com/1213971	external
https://www.suse.com/security/cve/CVE-2023-4194	external
https://bugzilla.suse.com/1214019	external
https://www.suse.com/security/cve/CVE-2023-42753	external
https://bugzilla.suse.com/1215150	external
https://bugzilla.suse.com/1218613	external
https://www.suse.com/security/cve/CVE-2023-42754	external
https://bugzilla.suse.com/1215467	external
https://bugzilla.suse.com/1222212	external
https://www.suse.com/security/cve/CVE-2023-42756	external
https://bugzilla.suse.com/1215767	external
https://www.suse.com/security/cve/CVE-2023-4623	external
https://bugzilla.suse.com/1215115	external
https://bugzilla.suse.com/1215440	external
https://bugzilla.suse.com/1217444	external
https://bugzilla.suse.com/1217531	external
https://bugzilla.suse.com/1219698	external
https://bugzilla.suse.com/1221578	external
https://bugzilla.suse.com/1221598	external
https://www.suse.com/security/cve/CVE-2023-46813	external
https://bugzilla.suse.com/1212649	external
https://bugzilla.suse.com/1216896	external
https://www.suse.com/security/cve/CVE-2023-4881	external
https://bugzilla.suse.com/1215221	external
https://www.suse.com/security/cve/CVE-2023-5345	external
https://bugzilla.suse.com/1215899	external
https://bugzilla.suse.com/1215971	external
https://www.suse.com/security/cve/CVE-2023-6606	external
https://bugzilla.suse.com/1217947	external
https://bugzilla.suse.com/1220015	external
https://www.suse.com/security/cve/CVE-2023-6610	external
https://bugzilla.suse.com/1217946	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "kernel-devel-longterm-6.6.17-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the kernel-devel-longterm-6.6.17-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-13704",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13704-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-3695 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-3695/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-1000251 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-1000251/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-12153 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-12153/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-13080 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-13080/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-14051 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-14051/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15129 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15129/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15265 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15265/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16536 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16536/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16537 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16537/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16645 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16645/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16646 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16646/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16647 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16647/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16648 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16648/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16995 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16995/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16996 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16996/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17448 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17448/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17449 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17449/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17450 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17450/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17852 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17852/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17853 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17853/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17854 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17854/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17855 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17855/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17856 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17856/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17857 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17857/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17862 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17862/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5123 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5123/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5715 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5715/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5753 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5753/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5754 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5754/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7541 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7541/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7542 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7542/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-8824 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-8824/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-8831 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-8831/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1000004 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1000004/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10322 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10322/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10323 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10323/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1068 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1068/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1118 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1118/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-12232 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-12232/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-12714 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-12714/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-13053 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-13053/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18710 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18710/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-19824 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-19824/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5332 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5332/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5333 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5333/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-8043 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-8043/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-8087 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-8087/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-8822 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-8822/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-10207 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-10207/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-11477 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-11477/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-11478 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-11478/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-11479 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-11479/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14615 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14615/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14814 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14814/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14896 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14896/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15030 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15030/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15031 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15031/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15098 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15098/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15099 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15099/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15290 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15290/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15504 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15504/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15902 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15902/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16231 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16231/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16232 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16232/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16234 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16234/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-17133 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-17133/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-17666 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-17666/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18808 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18808/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18812 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18812/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18813 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18813/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19252 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19252/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19332 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19332/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19338 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19338/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3016 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3016/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3846 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3846/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3882 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3882/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3887 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3887/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-6974 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-6974/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-7221 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-7221/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-7222 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-7222/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-8564 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-8564/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-8912 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-8912/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-9500 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-9500/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10135 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10135/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10766 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10766/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10767 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10767/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10768 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10768/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-12351 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-12351/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-12352 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-12352/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-14331 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-14331/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-14386 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-14386/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-24586 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-24586/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-24587 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-24587/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-24588 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-24588/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25639 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25639/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25656 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25656/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25668 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25668/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-26141 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-26141/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-2732 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-2732/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-29660 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-29660/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-29661 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-29661/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-8648 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-8648/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-8694 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-8694/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-23133 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-23133/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-26708 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-26708/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-28971 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-28971/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-32606 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-32606/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-33909 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-33909/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3483 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3483/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3489 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3489/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3490 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3490/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3491 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3491/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3542 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3542/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3640 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3640/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3653 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3653/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3656 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3656/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3744 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3744/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3753 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3753/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-37576 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-37576/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3759 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3759/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-38166 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-38166/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-43976 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-43976/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0185 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0185/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0330 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0330/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0847 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0847/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0886 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0886/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1462 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1462/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1516 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1516/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1679 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1679/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1729 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1729/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1852 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1852/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1966 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1966/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1972 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1972/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1973 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1973/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-22942 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-22942/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-2308 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-2308/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-24958 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-24958/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-2588 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-2588/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-2590 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-2590/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-26490 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-26490/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-28388 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-28388/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-28389 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-28389/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-28390 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-28390/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-28893 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-28893/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-29900 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-29900/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-29901 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-29901/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-29968 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-29968/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-3424 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-3424/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-34918 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-34918/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-3628 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-3628/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-3640 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-3640/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-40982 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-40982/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-41218 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-41218/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-41674 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-41674/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-42719 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-42719/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-42720 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-42720/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-42721 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-42721/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-42722 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-42722/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-4379 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-4379/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-44032 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-44032/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-44033 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-44033/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-44034 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-44034/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45884 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45884/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45885 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45885/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45886 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45886/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45887 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45887/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45888 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45888/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45919 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45919/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45934 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45934/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-0045 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-0045/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-1076 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-1076/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-1078 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-1078/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-1192 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-1192/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-1380 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-1380/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-20569 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-20569/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-20593 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-20593/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-2124 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-2124/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-31084 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-31084/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-3141 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-3141/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-3269 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-3269/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-39192 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-39192/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-39193 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-39193/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-4128 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-4128/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-4134 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-4134/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-4194 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-4194/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-42753 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-42753/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-42754 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-42754/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-42756 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-42756/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-4623 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-4623/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-46813 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-46813/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-4881 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-4881/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-5345 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-5345/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-6606 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-6606/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-6610 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-6610/"
      }
    ],
    "title": "kernel-devel-longterm-6.6.17-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:13704-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-longterm-6.6.17-1.1.aarch64",
                "product": {
                  "name": "kernel-devel-longterm-6.6.17-1.1.aarch64",
                  "product_id": "kernel-devel-longterm-6.6.17-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-longterm-6.6.17-1.1.aarch64",
                "product": {
                  "name": "kernel-source-longterm-6.6.17-1.1.aarch64",
                  "product_id": "kernel-source-longterm-6.6.17-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-longterm-6.6.17-1.1.ppc64le",
                "product": {
                  "name": "kernel-devel-longterm-6.6.17-1.1.ppc64le",
                  "product_id": "kernel-devel-longterm-6.6.17-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-longterm-6.6.17-1.1.ppc64le",
                "product": {
                  "name": "kernel-source-longterm-6.6.17-1.1.ppc64le",
                  "product_id": "kernel-source-longterm-6.6.17-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-longterm-6.6.17-1.1.s390x",
                "product": {
                  "name": "kernel-devel-longterm-6.6.17-1.1.s390x",
                  "product_id": "kernel-devel-longterm-6.6.17-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-longterm-6.6.17-1.1.s390x",
                "product": {
                  "name": "kernel-source-longterm-6.6.17-1.1.s390x",
                  "product_id": "kernel-source-longterm-6.6.17-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-longterm-6.6.17-1.1.x86_64",
                "product": {
                  "name": "kernel-devel-longterm-6.6.17-1.1.x86_64",
                  "product_id": "kernel-devel-longterm-6.6.17-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-longterm-6.6.17-1.1.x86_64",
                "product": {
                  "name": "kernel-source-longterm-6.6.17-1.1.x86_64",
                  "product_id": "kernel-source-longterm-6.6.17-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-longterm-6.6.17-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64"
        },
        "product_reference": "kernel-devel-longterm-6.6.17-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-longterm-6.6.17-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le"
        },
        "product_reference": "kernel-devel-longterm-6.6.17-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-longterm-6.6.17-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x"
        },
        "product_reference": "kernel-devel-longterm-6.6.17-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-longterm-6.6.17-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64"
        },
        "product_reference": "kernel-devel-longterm-6.6.17-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-longterm-6.6.17-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64"
        },
        "product_reference": "kernel-source-longterm-6.6.17-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-longterm-6.6.17-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le"
        },
        "product_reference": "kernel-source-longterm-6.6.17-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-longterm-6.6.17-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x"
        },
        "product_reference": "kernel-source-longterm-6.6.17-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-longterm-6.6.17-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        },
        "product_reference": "kernel-source-longterm-6.6.17-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2016-3695",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-3695"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The einj_error_inject function in drivers/acpi/apei/einj.c in the Linux kernel allows local users to simulate hardware errors and consequently cause a denial of service by leveraging failure to disable APEI error injection through EINJ when securelevel is set.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-3695",
          "url": "https://www.suse.com/security/cve/CVE-2016-3695"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1023051 for CVE-2016-3695",
          "url": "https://bugzilla.suse.com/1023051"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.2,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2016-3695"
    },
    {
      "cve": "CVE-2017-1000251",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-1000251"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-1000251",
          "url": "https://www.suse.com/security/cve/CVE-2017-1000251"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1057389 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1057389"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1057950 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1057950"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1070535 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1070535"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1072117 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1072117"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1072162 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1072162"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1120758 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1120758"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-1000251"
    },
    {
      "cve": "CVE-2017-12153",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-12153"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are present in a Netlink request. This request can be issued by a user with the CAP_NET_ADMIN capability and may result in a NULL pointer dereference and system crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-12153",
          "url": "https://www.suse.com/security/cve/CVE-2017-12153"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1058410 for CVE-2017-12153",
          "url": "https://bugzilla.suse.com/1058410"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1058624 for CVE-2017-12153",
          "url": "https://bugzilla.suse.com/1058624"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-12153"
    },
    {
      "cve": "CVE-2017-13080",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-13080"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-13080",
          "url": "https://www.suse.com/security/cve/CVE-2017-13080"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1056061 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1056061"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1063479 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1063479"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1063667 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1063667"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1063671 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1063671"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066295 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1066295"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105108 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1105108"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178872 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1178872"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179588 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1179588"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-13080"
    },
    {
      "cve": "CVE-2017-14051",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-14051"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in drivers/scsi/qla2xxx/qla_attr.c in the Linux kernel through 4.12.10 allows local users to cause a denial of service (memory corruption and system crash) by leveraging root access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-14051",
          "url": "https://www.suse.com/security/cve/CVE-2017-14051"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1056588 for CVE-2017-14051",
          "url": "https://bugzilla.suse.com/1056588"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-14051"
    },
    {
      "cve": "CVE-2017-15129",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15129"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function get_net_ns_by_id() in net/core/net_namespace.c does not check for the net::count value after it has found a peer network in netns_ids idr, which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15129",
          "url": "https://www.suse.com/security/cve/CVE-2017-15129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074839 for CVE-2017-15129",
          "url": "https://bugzilla.suse.com/1074839"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-15129"
    },
    {
      "cve": "CVE-2017-15265",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15265"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Race condition in the ALSA subsystem in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted /dev/snd/seq ioctl calls, related to sound/core/seq/seq_clientmgr.c and sound/core/seq/seq_ports.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15265",
          "url": "https://www.suse.com/security/cve/CVE-2017-15265"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062520 for CVE-2017-15265",
          "url": "https://bugzilla.suse.com/1062520"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-15265",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-15265"
    },
    {
      "cve": "CVE-2017-16536",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16536"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The cx231xx_usb_probe function in drivers/media/usb/cx231xx/cx231xx-cards.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16536",
          "url": "https://www.suse.com/security/cve/CVE-2017-16536"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066606 for CVE-2017-16536",
          "url": "https://bugzilla.suse.com/1066606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16536",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16536",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16536"
    },
    {
      "cve": "CVE-2017-16537",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16537"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The imon_probe function in drivers/media/rc/imon.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16537",
          "url": "https://www.suse.com/security/cve/CVE-2017-16537"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066573 for CVE-2017-16537",
          "url": "https://bugzilla.suse.com/1066573"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16537",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16537",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16537"
    },
    {
      "cve": "CVE-2017-16645",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16645"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The ims_pcu_get_cdc_union_desc function in drivers/input/misc/ims-pcu.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (ims_pcu_parse_cdc_data out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16645",
          "url": "https://www.suse.com/security/cve/CVE-2017-16645"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067132 for CVE-2017-16645",
          "url": "https://bugzilla.suse.com/1067132"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16645",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16645",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16645"
    },
    {
      "cve": "CVE-2017-16646",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16646"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/media/usb/dvb-usb/dib0700_devices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (BUG and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16646",
          "url": "https://www.suse.com/security/cve/CVE-2017-16646"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067105 for CVE-2017-16646",
          "url": "https://bugzilla.suse.com/1067105"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16646",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16646"
    },
    {
      "cve": "CVE-2017-16647",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16647"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/usb/asix_devices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16647",
          "url": "https://www.suse.com/security/cve/CVE-2017-16647"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067102 for CVE-2017-16647",
          "url": "https://bugzilla.suse.com/1067102"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16647",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16647"
    },
    {
      "cve": "CVE-2017-16648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The dvb_frontend_free function in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (use-after-free and system crash) or possibly have unspecified other impact via a crafted USB device. NOTE: the function was later renamed __dvb_frontend_free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16648",
          "url": "https://www.suse.com/security/cve/CVE-2017-16648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067087 for CVE-2017-16648",
          "url": "https://bugzilla.suse.com/1067087"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16648",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16648",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16648"
    },
    {
      "cve": "CVE-2017-16995",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16995"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The check_alu_op function in kernel/bpf/verifier.c in the Linux kernel through 4.4 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect sign extension.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16995",
          "url": "https://www.suse.com/security/cve/CVE-2017-16995"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-16995",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16995"
    },
    {
      "cve": "CVE-2017-16996",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16996"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging register truncation mishandling.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16996",
          "url": "https://www.suse.com/security/cve/CVE-2017-16996"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-16996",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16996"
    },
    {
      "cve": "CVE-2017-17448",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17448"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "net/netfilter/nfnetlink_cthelper.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for new, get, and del operations, which allows local users to bypass intended access restrictions because the nfnl_cthelper_list data structure is shared across all net namespaces.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17448",
          "url": "https://www.suse.com/security/cve/CVE-2017-17448"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071693 for CVE-2017-17448",
          "url": "https://bugzilla.suse.com/1071693"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17448"
    },
    {
      "cve": "CVE-2017-17449",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17449"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The __netlink_deliver_tap_skb function in net/netlink/af_netlink.c in the Linux kernel through 4.14.4, when CONFIG_NLMON is enabled, does not restrict observations of Netlink messages to a single net namespace, which allows local users to obtain sensitive information by leveraging the CAP_NET_ADMIN capability to sniff an nlmon interface for all Netlink activity on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17449",
          "url": "https://www.suse.com/security/cve/CVE-2017-17449"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071694 for CVE-2017-17449",
          "url": "https://bugzilla.suse.com/1071694"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17449"
    },
    {
      "cve": "CVE-2017-17450",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17450"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "net/netfilter/xt_osf.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for add_callback and remove_callback operations, which allows local users to bypass intended access restrictions because the xt_osf_fingers data structure is shared across all net namespaces.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17450",
          "url": "https://www.suse.com/security/cve/CVE-2017-17450"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071695 for CVE-2017-17450",
          "url": "https://bugzilla.suse.com/1071695"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074033 for CVE-2017-17450",
          "url": "https://bugzilla.suse.com/1074033"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-17450",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17450"
    },
    {
      "cve": "CVE-2017-17852",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17852"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging mishandling of 32-bit ALU ops.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17852",
          "url": "https://www.suse.com/security/cve/CVE-2017-17852"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17852",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17852"
    },
    {
      "cve": "CVE-2017-17853",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17853"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect BPF_RSH signed bounds calculations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17853",
          "url": "https://www.suse.com/security/cve/CVE-2017-17853"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17853",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17853"
    },
    {
      "cve": "CVE-2017-17854",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17854"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (integer overflow and memory corruption) or possibly have unspecified other impact by leveraging unrestricted integer values for pointer arithmetic.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17854",
          "url": "https://www.suse.com/security/cve/CVE-2017-17854"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17854",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17854"
    },
    {
      "cve": "CVE-2017-17855",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17855"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging improper use of pointers in place of scalars.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17855",
          "url": "https://www.suse.com/security/cve/CVE-2017-17855"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17855",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17855"
    },
    {
      "cve": "CVE-2017-17856",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17856"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging the lack of stack-pointer alignment enforcement.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17856",
          "url": "https://www.suse.com/security/cve/CVE-2017-17856"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17856",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17856"
    },
    {
      "cve": "CVE-2017-17857",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17857"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The check_stack_boundary function in kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging mishandling of invalid variable stack read operations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17857",
          "url": "https://www.suse.com/security/cve/CVE-2017-17857"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17857",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17857"
    },
    {
      "cve": "CVE-2017-17862",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17862"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 ignores unreachable code, even though it would still be processed by JIT compilers. This behavior, also considered an improper branch-pruning logic issue, could possibly be used by local users for denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17862",
          "url": "https://www.suse.com/security/cve/CVE-2017-17862"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17862",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17862"
    },
    {
      "cve": "CVE-2017-5123",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5123"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient data validation in waitid allowed an user to escape sandboxes on Linux.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5123",
          "url": "https://www.suse.com/security/cve/CVE-2017-5123"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062473 for CVE-2017-5123",
          "url": "https://bugzilla.suse.com/1062473"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1122971 for CVE-2017-5123",
          "url": "https://bugzilla.suse.com/1122971"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5123"
    },
    {
      "cve": "CVE-2017-5715",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5715"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5715",
          "url": "https://www.suse.com/security/cve/CVE-2017-5715"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074741 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074741"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074919 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075007 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075007"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075262 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075262"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075419 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075419"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076115 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076115"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076372 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076372"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076606 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1078353 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1078353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080039 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1080039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087887 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1088147 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1088147"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1095735 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1095735"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102517 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1102517"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105108 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1105108"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1126516 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1126516"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173489 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1173489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201457 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201457"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203236 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1203236"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5715"
    },
    {
      "cve": "CVE-2017-5753",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5753"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5753",
          "url": "https://www.suse.com/security/cve/CVE-2017-5753"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075419 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1075419"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075748 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1075748"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080039 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1080039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087084 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1087084"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136865 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1136865"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1201877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209547 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1209547"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5753"
    },
    {
      "cve": "CVE-2017-5754",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5754"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5754",
          "url": "https://www.suse.com/security/cve/CVE-2017-5754"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075008 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1075008"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115045 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1115045"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136865 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1136865"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1201877"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5754"
    },
    {
      "cve": "CVE-2017-7541",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7541"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The brcmf_cfg80211_mgmt_tx function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel before 4.12.3 allows local users to cause a denial of service (buffer overflow and system crash) or possibly gain privileges via a crafted NL80211_CMD_FRAME Netlink packet.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7541",
          "url": "https://www.suse.com/security/cve/CVE-2017-7541"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1049645 for CVE-2017-7541",
          "url": "https://bugzilla.suse.com/1049645"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7541"
    },
    {
      "cve": "CVE-2017-7542",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7542"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel through 4.12.3 allows local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7542",
          "url": "https://www.suse.com/security/cve/CVE-2017-7542"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1049882 for CVE-2017-7542",
          "url": "https://bugzilla.suse.com/1049882"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1061936 for CVE-2017-7542",
          "url": "https://bugzilla.suse.com/1061936"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7542"
    },
    {
      "cve": "CVE-2017-8824",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-8824"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The dccp_disconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service (use-after-free) via an AF_UNSPEC connect system call during the DCCP_LISTEN state.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-8824",
          "url": "https://www.suse.com/security/cve/CVE-2017-8824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1070771 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1070771"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076734 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1076734"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1092904 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1092904"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-8824"
    },
    {
      "cve": "CVE-2017-8831",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-8831"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel through 4.11.5 allows local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by changing a certain sequence-number value, aka a \"double fetch\" vulnerability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-8831",
          "url": "https://www.suse.com/security/cve/CVE-2017-8831"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1037994 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1037994"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1061936 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1061936"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-8831"
    },
    {
      "cve": "CVE-2018-1000004",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1000004"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1000004",
          "url": "https://www.suse.com/security/cve/CVE-2018-1000004"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076017 for CVE-2018-1000004",
          "url": "https://bugzilla.suse.com/1076017"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-1000004",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-1000004"
    },
    {
      "cve": "CVE-2018-10322",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10322"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The xfs_dinode_verify function in fs/xfs/libxfs/xfs_inode_buf.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service (xfs_ilock_attr_map_shared invalid pointer dereference) via a crafted xfs image.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10322",
          "url": "https://www.suse.com/security/cve/CVE-2018-10322"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-10322",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1090749 for CVE-2018-10322",
          "url": "https://bugzilla.suse.com/1090749"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10322"
    },
    {
      "cve": "CVE-2018-10323",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10323"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The xfs_bmap_extents_to_btree function in fs/xfs/libxfs/xfs_bmap.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service (xfs_bmapi_write NULL pointer dereference) via a crafted xfs image.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10323",
          "url": "https://www.suse.com/security/cve/CVE-2018-10323"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-10323",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1090717 for CVE-2018-10323",
          "url": "https://bugzilla.suse.com/1090717"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10323"
    },
    {
      "cve": "CVE-2018-1068",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1068"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux 4.x kernel\u0027s implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1068",
          "url": "https://www.suse.com/security/cve/CVE-2018-1068"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085107 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1085107"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085114 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1085114"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1123903 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1123903"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-1068"
    },
    {
      "cve": "CVE-2018-1118",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1118"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1118",
          "url": "https://www.suse.com/security/cve/CVE-2018-1118"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-1118",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1092472 for CVE-2018-1118",
          "url": "https://bugzilla.suse.com/1092472"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-1118"
    },
    {
      "cve": "CVE-2018-12232",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-12232"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In net/socket.c in the Linux kernel through 4.17.1, there is a race condition between fchownat and close in cases where they target the same socket file descriptor, related to the sock_close and sockfs_setattr functions. fchownat does not increment the file descriptor reference count, which allows close to set the socket to NULL during fchownat\u0027s execution, leading to a NULL pointer dereference and system crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-12232",
          "url": "https://www.suse.com/security/cve/CVE-2018-12232"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1097593 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1097593"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1125907 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1125907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1127757 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1127757"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-12232"
    },
    {
      "cve": "CVE-2018-12714",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-12714"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 4.17.2. The filter parsing in kernel/trace/trace_events_filter.c could be called with no filter, which is an N=0 case when it expected at least one line to have been read, thus making the N-1 index invalid. This allows attackers to cause a denial of service (slab out-of-bounds write) or possibly have unspecified other impact via crafted perf_event_open and mmap system calls.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-12714",
          "url": "https://www.suse.com/security/cve/CVE-2018-12714"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1098933 for CVE-2018-12714",
          "url": "https://bugzilla.suse.com/1098933"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-12714"
    },
    {
      "cve": "CVE-2018-13053",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-13053"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The alarm_timer_nsleep function in kernel/time/alarmtimer.c in the Linux kernel through 4.17.3 has an integer overflow via a large relative timeout because ktime_add_safe is not used.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-13053",
          "url": "https://www.suse.com/security/cve/CVE-2018-13053"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1099924 for CVE-2018-13053",
          "url": "https://bugzilla.suse.com/1099924"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2018-13053",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-13053"
    },
    {
      "cve": "CVE-2018-18710",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18710"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 4.19. An information leak in cdrom_ioctl_select_disc in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940 and CVE-2018-16658.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18710",
          "url": "https://www.suse.com/security/cve/CVE-2018-18710"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1113751 for CVE-2018-18710",
          "url": "https://bugzilla.suse.com/1113751"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-18710"
    },
    {
      "cve": "CVE-2018-19824",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-19824"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.19.6, a local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device (with zero interfaces) that is mishandled in usb_audio_probe in sound/usb/card.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-19824",
          "url": "https://www.suse.com/security/cve/CVE-2018-19824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118152 for CVE-2018-19824",
          "url": "https://bugzilla.suse.com/1118152"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-19824"
    },
    {
      "cve": "CVE-2018-5332",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5332"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5332",
          "url": "https://www.suse.com/security/cve/CVE-2018-5332"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075621 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1075621"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.6,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-5332"
    },
    {
      "cve": "CVE-2018-5333",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5333"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5333",
          "url": "https://www.suse.com/security/cve/CVE-2018-5333"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075617 for CVE-2018-5333",
          "url": "https://bugzilla.suse.com/1075617"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-5333",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-5333"
    },
    {
      "cve": "CVE-2018-8043",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-8043"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The unimac_mdio_probe function in drivers/net/phy/mdio-bcm-unimac.c in the Linux kernel through 4.15.8 does not validate certain resource availability, which allows local users to cause a denial of service (NULL pointer dereference).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-8043",
          "url": "https://www.suse.com/security/cve/CVE-2018-8043"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1084829 for CVE-2018-8043",
          "url": "https://bugzilla.suse.com/1084829"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 0,
            "baseSeverity": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-8043"
    },
    {
      "cve": "CVE-2018-8087",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-8087"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Memory leak in the hwsim_new_radio_nl function in drivers/net/wireless/mac80211_hwsim.c in the Linux kernel through 4.15.9 allows local users to cause a denial of service (memory consumption) by triggering an out-of-array error case.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-8087",
          "url": "https://www.suse.com/security/cve/CVE-2018-8087"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085053 for CVE-2018-8087",
          "url": "https://bugzilla.suse.com/1085053"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-8087"
    },
    {
      "cve": "CVE-2018-8822",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-8822"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Incorrect buffer length handling in the ncp_read_kernel function in fs/ncpfs/ncplib_kernel.c in the Linux kernel through 4.15.11, and in drivers/staging/ncpfs/ncplib_kernel.c in the Linux kernel 4.16-rc through 4.16-rc6, could be exploited by malicious NCPFS servers to crash the kernel or execute code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-8822",
          "url": "https://www.suse.com/security/cve/CVE-2018-8822"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1086162 for CVE-2018-8822",
          "url": "https://bugzilla.suse.com/1086162"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1090404 for CVE-2018-8822",
          "url": "https://bugzilla.suse.com/1090404"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-8822",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-8822"
    },
    {
      "cve": "CVE-2019-10207",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-10207"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s Bluetooth implementation of UART, all versions kernel 3.x.x before 4.18.0 and kernel 5.x.x. An attacker with local access and write permissions to the Bluetooth hardware could use this flaw to issue a specially crafted ioctl function call and cause the system to crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-10207",
          "url": "https://www.suse.com/security/cve/CVE-2019-10207"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1123959 for CVE-2019-10207",
          "url": "https://bugzilla.suse.com/1123959"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142857 for CVE-2019-10207",
          "url": "https://bugzilla.suse.com/1142857"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-10207"
    },
    {
      "cve": "CVE-2019-11477",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-11477"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Jonathan Looney discovered that the TCP_SKB_CB(skb)-\u003etcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit 3b4929f65b0d8249f19a50245cd88ed1a2f78cff.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-11477",
          "url": "https://www.suse.com/security/cve/CVE-2019-11477"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132686 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1132686"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1137586 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1137586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142129 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1142129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1153242 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1153242"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-11477"
    },
    {
      "cve": "CVE-2019-11478",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-11478"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit f070ef2ac66716357066b683fb0baf55f8191a2e.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-11478",
          "url": "https://www.suse.com/security/cve/CVE-2019-11478"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132686 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1132686"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1137586 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1137586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142129 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1142129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1143542 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1143542"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-11478"
    },
    {
      "cve": "CVE-2019-11479",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-11479"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commits 967c05aee439e6e5d7d805e195b3a20ef5c433d6 and 5f3e2bf008c2221478101ee72f5cb4654b9fc363.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-11479",
          "url": "https://www.suse.com/security/cve/CVE-2019-11479"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132686 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1132686"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1137586 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1137586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142129 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1142129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1143542 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1143542"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-11479"
    },
    {
      "cve": "CVE-2019-14615",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14615"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14615",
          "url": "https://www.suse.com/security/cve/CVE-2019-14615"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160195 for CVE-2019-14615",
          "url": "https://bugzilla.suse.com/1160195"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1165881 for CVE-2019-14615",
          "url": "https://bugzilla.suse.com/1165881"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-14615"
    },
    {
      "cve": "CVE-2019-14814",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14814"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14814",
          "url": "https://www.suse.com/security/cve/CVE-2019-14814"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146512 for CVE-2019-14814",
          "url": "https://bugzilla.suse.com/1146512"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173664 for CVE-2019-14814",
          "url": "https://bugzilla.suse.com/1173664"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173665 for CVE-2019-14814",
          "url": "https://bugzilla.suse.com/1173665"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-14814"
    },
    {
      "cve": "CVE-2019-14896",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14896"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14896",
          "url": "https://www.suse.com/security/cve/CVE-2019-14896"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1157157 for CVE-2019-14896",
          "url": "https://bugzilla.suse.com/1157157"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160468 for CVE-2019-14896",
          "url": "https://bugzilla.suse.com/1160468"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-14896"
    },
    {
      "cve": "CVE-2019-15030",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15030"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users\u0027 processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process because of a missing arch/powerpc/kernel/process.c check.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15030",
          "url": "https://www.suse.com/security/cve/CVE-2019-15030"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149713 for CVE-2019-15030",
          "url": "https://bugzilla.suse.com/1149713"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15030"
    },
    {
      "cve": "CVE-2019-15031",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15031"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users\u0027 processes via an interrupt. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process, because MSR_TM_ACTIVE is misused in arch/powerpc/kernel/process.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15031",
          "url": "https://www.suse.com/security/cve/CVE-2019-15031"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149713 for CVE-2019-15031",
          "url": "https://bugzilla.suse.com/1149713"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15031"
    },
    {
      "cve": "CVE-2019-15098",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15098"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15098",
          "url": "https://www.suse.com/security/cve/CVE-2019-15098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146378 for CVE-2019-15098",
          "url": "https://bugzilla.suse.com/1146378"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146543 for CVE-2019-15098",
          "url": "https://bugzilla.suse.com/1146543"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15098"
    },
    {
      "cve": "CVE-2019-15099",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15099"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15099",
          "url": "https://www.suse.com/security/cve/CVE-2019-15099"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146368 for CVE-2019-15099",
          "url": "https://bugzilla.suse.com/1146368"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15099"
    },
    {
      "cve": "CVE-2019-15290",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15290"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-15098. Reason: This candidate is a duplicate of CVE-2019-15098. Notes: All CVE users should reference CVE-2019-15098 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15290",
          "url": "https://www.suse.com/security/cve/CVE-2019-15290"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146378 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1146378"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1146519"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146543 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1146543"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158381 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1158381"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158834 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1158834"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15290"
    },
    {
      "cve": "CVE-2019-15504",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15504"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/rsi/rsi_91x_usb.c in the Linux kernel through 5.2.9 has a Double Free via crafted USB device traffic (which may be remote via usbip or usbredir).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15504",
          "url": "https://www.suse.com/security/cve/CVE-2019-15504"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1147116 for CVE-2019-15504",
          "url": "https://bugzilla.suse.com/1147116"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185852 for CVE-2019-15504",
          "url": "https://bugzilla.suse.com/1185852"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-15504"
    },
    {
      "cve": "CVE-2019-15902",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15902"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream \"x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()\" commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15902",
          "url": "https://www.suse.com/security/cve/CVE-2019-15902"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149376 for CVE-2019-15902",
          "url": "https://bugzilla.suse.com/1149376"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1155131 for CVE-2019-15902",
          "url": "https://bugzilla.suse.com/1155131"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15902"
    },
    {
      "cve": "CVE-2019-16231",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16231"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/fjes/fjes_main.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16231",
          "url": "https://www.suse.com/security/cve/CVE-2019-16231"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1150466 for CVE-2019-16231",
          "url": "https://bugzilla.suse.com/1150466"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-16231"
    },
    {
      "cve": "CVE-2019-16232",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16232"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/marvell/libertas/if_sdio.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16232",
          "url": "https://www.suse.com/security/cve/CVE-2019-16232"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1150465 for CVE-2019-16232",
          "url": "https://bugzilla.suse.com/1150465"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-16232"
    },
    {
      "cve": "CVE-2019-16234",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16234"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/intel/iwlwifi/pcie/trans.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16234",
          "url": "https://www.suse.com/security/cve/CVE-2019-16234"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1150452 for CVE-2019-16234",
          "url": "https://bugzilla.suse.com/1150452"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-16234"
    },
    {
      "cve": "CVE-2019-17133",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-17133"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-17133",
          "url": "https://www.suse.com/security/cve/CVE-2019-17133"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1153158 for CVE-2019-17133",
          "url": "https://bugzilla.suse.com/1153158"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1153161 for CVE-2019-17133",
          "url": "https://bugzilla.suse.com/1153161"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-17133"
    },
    {
      "cve": "CVE-2019-17666",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-17666"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to a buffer overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-17666",
          "url": "https://www.suse.com/security/cve/CVE-2019-17666"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1154372 for CVE-2019-17666",
          "url": "https://bugzilla.suse.com/1154372"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-17666"
    },
    {
      "cve": "CVE-2019-18808",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18808"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-128c66429247.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18808",
          "url": "https://www.suse.com/security/cve/CVE-2019-18808"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156259 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1156259"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189884 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1189884"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190534 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1190534"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18808"
    },
    {
      "cve": "CVE-2019-18812",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18812"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the sof_dfsentry_write() function in sound/soc/sof/debug.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-c0a333d842ef.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18812",
          "url": "https://www.suse.com/security/cve/CVE-2019-18812"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156277 for CVE-2019-18812",
          "url": "https://bugzilla.suse.com/1156277"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18812"
    },
    {
      "cve": "CVE-2019-18813",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18813"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the dwc3_pci_probe() function in drivers/usb/dwc3/dwc3-pci.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering platform_device_add_properties() failures, aka CID-9bbfceea12a8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18813",
          "url": "https://www.suse.com/security/cve/CVE-2019-18813"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156278 for CVE-2019-18813",
          "url": "https://bugzilla.suse.com/1156278"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18813"
    },
    {
      "cve": "CVE-2019-19252",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19252"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "vcs_write in drivers/tty/vt/vc_screen.c in the Linux kernel through 5.3.13 does not prevent write access to vcsu devices, aka CID-0c9acb1af77a.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19252",
          "url": "https://www.suse.com/security/cve/CVE-2019-19252"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1157813 for CVE-2019-19252",
          "url": "https://bugzilla.suse.com/1157813"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19252"
    },
    {
      "cve": "CVE-2019-19332",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19332"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel\u0027s KVM hypervisor handled the \u0027KVM_GET_EMULATED_CPUID\u0027 ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A user or process able to access the \u0027/dev/kvm\u0027 device could use this flaw to crash the system, resulting in a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19332",
          "url": "https://www.suse.com/security/cve/CVE-2019-19332"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158827 for CVE-2019-19332",
          "url": "https://bugzilla.suse.com/1158827"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19332"
    },
    {
      "cve": "CVE-2019-19338",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19338"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19338",
          "url": "https://www.suse.com/security/cve/CVE-2019-19338"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158954 for CVE-2019-19338",
          "url": "https://bugzilla.suse.com/1158954"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19338"
    },
    {
      "cve": "CVE-2019-3016",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3016"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In a Linux KVM guest that has PV TLB enabled, a process in the guest kernel may be able to read memory locations from another process in the same guest. This problem is limit to the host running linux kernel 4.10 with a guest running linux kernel 4.16 or later. The problem mainly affects AMD processors but Intel CPUs cannot be ruled out.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3016",
          "url": "https://www.suse.com/security/cve/CVE-2019-3016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2019-3016",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1161154 for CVE-2019-3016",
          "url": "https://bugzilla.suse.com/1161154"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3016"
    },
    {
      "cve": "CVE-2019-3846",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3846"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3846",
          "url": "https://www.suse.com/security/cve/CVE-2019-3846"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136424 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1136424"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136446 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1136446"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156330 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1156330"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-3846"
    },
    {
      "cve": "CVE-2019-3882",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3882"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s vfio interface implementation that permits violation of the user\u0027s locked memory limit. If a device is bound to a vfio driver, such as vfio-pci, and the local attacker is administratively granted ownership of the device, it may cause a system memory exhaustion and thus a denial of service (DoS). Versions 3.10, 4.14 and 4.18 are vulnerable.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3882",
          "url": "https://www.suse.com/security/cve/CVE-2019-3882"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131416 for CVE-2019-3882",
          "url": "https://bugzilla.suse.com/1131416"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131427 for CVE-2019-3882",
          "url": "https://bugzilla.suse.com/1131427"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1133319 for CVE-2019-3882",
          "url": "https://bugzilla.suse.com/1133319"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3882"
    },
    {
      "cve": "CVE-2019-3887",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3887"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. In that, L1 guest could access L0\u0027s APIC register values via L2 guest, when \u0027virtualize x2APIC mode\u0027 is enabled. A guest could use this flaw to potentially crash the host kernel resulting in DoS issue. Kernel versions from 4.16 and newer are vulnerable to this issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3887",
          "url": "https://www.suse.com/security/cve/CVE-2019-3887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131800 for CVE-2019-3887",
          "url": "https://bugzilla.suse.com/1131800"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3887"
    },
    {
      "cve": "CVE-2019-6974",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-6974"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race condition, leading to a use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-6974",
          "url": "https://www.suse.com/security/cve/CVE-2019-6974"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124728 for CVE-2019-6974",
          "url": "https://bugzilla.suse.com/1124728"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124729 for CVE-2019-6974",
          "url": "https://bugzilla.suse.com/1124729"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-6974"
    },
    {
      "cve": "CVE-2019-7221",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-7221"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-7221",
          "url": "https://www.suse.com/security/cve/CVE-2019-7221"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124732 for CVE-2019-7221",
          "url": "https://bugzilla.suse.com/1124732"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124734 for CVE-2019-7221",
          "url": "https://bugzilla.suse.com/1124734"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-7221"
    },
    {
      "cve": "CVE-2019-7222",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-7222"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-7222",
          "url": "https://www.suse.com/security/cve/CVE-2019-7222"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124735 for CVE-2019-7222",
          "url": "https://bugzilla.suse.com/1124735"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.8,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-7222"
    },
    {
      "cve": "CVE-2019-8564",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-8564"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A logic issue was addressed with improved validation. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. An attacker in a privileged network position can modify driver state.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-8564",
          "url": "https://www.suse.com/security/cve/CVE-2019-8564"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132673 for CVE-2019-8564",
          "url": "https://bugzilla.suse.com/1132673"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132828 for CVE-2019-8564",
          "url": "https://bugzilla.suse.com/1132828"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-8564"
    },
    {
      "cve": "CVE-2019-8912",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-8912"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.20.11, af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which leads to a use-after-free in sockfs_setattr.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-8912",
          "url": "https://www.suse.com/security/cve/CVE-2019-8912"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1125907 for CVE-2019-8912",
          "url": "https://bugzilla.suse.com/1125907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1126284 for CVE-2019-8912",
          "url": "https://bugzilla.suse.com/1126284"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-8912"
    },
    {
      "cve": "CVE-2019-9500",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-9500"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. If the Wake-up on Wireless LAN functionality is configured, a malicious event frame can be constructed to trigger an heap buffer overflow in the brcmf_wowl_nd_results function. This vulnerability can be exploited with compromised chipsets to compromise the host, or when used in combination with CVE-2019-9503, can be used remotely. In the worst case scenario, by sending specially-crafted WiFi packets, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system. More typically, this vulnerability will result in denial-of-service conditions.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-9500",
          "url": "https://www.suse.com/security/cve/CVE-2019-9500"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132681 for CVE-2019-9500",
          "url": "https://bugzilla.suse.com/1132681"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-9500"
    },
    {
      "cve": "CVE-2020-10135",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10135"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Legacy pairing and secure-connections pairing authentication in Bluetooth BR/EDR Core Specification v5.2 and earlier may allow an unauthenticated user to complete authentication without pairing credentials via adjacent access. An unauthenticated, adjacent attacker could impersonate a Bluetooth BR/EDR master or slave to pair with a previously paired remote device to successfully complete the authentication procedure without knowing the link key.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10135",
          "url": "https://www.suse.com/security/cve/CVE-2020-10135"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1171988 for CVE-2020-10135",
          "url": "https://bugzilla.suse.com/1171988"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10135"
    },
    {
      "cve": "CVE-2020-10766",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10766"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A logic bug flaw was found in Linux kernel before 5.8-rc1 in the implementation of SSBD. A bug in the logic handling allows an attacker with a local account to disable SSBD protection during a context switch when additional speculative execution mitigations are in place. This issue was introduced when the per task/process conditional STIPB switching was added on top of the existing SSBD switching. The highest threat from this vulnerability is to confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10766",
          "url": "https://www.suse.com/security/cve/CVE-2020-10766"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2020-10766",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172781 for CVE-2020-10766",
          "url": "https://bugzilla.suse.com/1172781"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10766"
    },
    {
      "cve": "CVE-2020-10767",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10767"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The IBPB mitigation will be disabled when STIBP is not available or when the Enhanced Indirect Branch Restricted Speculation (IBRS) is available. This flaw allows a local attacker to perform a Spectre V2 style attack when this configuration is active. The highest threat from this vulnerability is to confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10767",
          "url": "https://www.suse.com/security/cve/CVE-2020-10767"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2020-10767",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172782 for CVE-2020-10767",
          "url": "https://bugzilla.suse.com/1172782"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10767"
    },
    {
      "cve": "CVE-2020-10768",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10768"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function, where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as being \u0027force disabled\u0027 when it is not and opens the system to Spectre v2 attacks. The highest threat from this vulnerability is to confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10768",
          "url": "https://www.suse.com/security/cve/CVE-2020-10768"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2020-10768",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172783 for CVE-2020-10768",
          "url": "https://bugzilla.suse.com/1172783"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10768"
    },
    {
      "cve": "CVE-2020-12351",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-12351"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-12351",
          "url": "https://www.suse.com/security/cve/CVE-2020-12351"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177724 for CVE-2020-12351",
          "url": "https://bugzilla.suse.com/1177724"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177729 for CVE-2020-12351",
          "url": "https://bugzilla.suse.com/1177729"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178397 for CVE-2020-12351",
          "url": "https://bugzilla.suse.com/1178397"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-12351"
    },
    {
      "cve": "CVE-2020-12352",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-12352"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-12352",
          "url": "https://www.suse.com/security/cve/CVE-2020-12352"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177725 for CVE-2020-12352",
          "url": "https://bugzilla.suse.com/1177725"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178398 for CVE-2020-12352",
          "url": "https://bugzilla.suse.com/1178398"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-12352"
    },
    {
      "cve": "CVE-2020-14331",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-14331"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console, calling an ioctl VT_RESIZE, which causes an out-of-bounds write to occur. This flaw allows a local user with access to the VGA console to crash the system, potentially escalating their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-14331",
          "url": "https://www.suse.com/security/cve/CVE-2020-14331"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1174205 for CVE-2020-14331",
          "url": "https://bugzilla.suse.com/1174205"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1174247 for CVE-2020-14331",
          "url": "https://bugzilla.suse.com/1174247"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-14331"
    },
    {
      "cve": "CVE-2020-14386",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-14386"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel before 5.9-rc4. Memory corruption can be exploited to gain root privileges from unprivileged processes. The highest threat from this vulnerability is to data confidentiality and integrity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-14386",
          "url": "https://www.suse.com/security/cve/CVE-2020-14386"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1176069 for CVE-2020-14386",
          "url": "https://bugzilla.suse.com/1176069"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1176072 for CVE-2020-14386",
          "url": "https://bugzilla.suse.com/1176072"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-14386"
    },
    {
      "cve": "CVE-2020-24586",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-24586"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances, when another device sends fragmented frames encrypted using WEP, CCMP, or GCMP, this can be abused to inject arbitrary network packets and/or exfiltrate user data.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-24586",
          "url": "https://www.suse.com/security/cve/CVE-2020-24586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185859 for CVE-2020-24586",
          "url": "https://bugzilla.suse.com/1185859"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192868 for CVE-2020-24586",
          "url": "https://bugzilla.suse.com/1192868"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-24586"
    },
    {
      "cve": "CVE-2020-24587",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-24587"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-24587",
          "url": "https://www.suse.com/security/cve/CVE-2020-24587"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185859 for CVE-2020-24587",
          "url": "https://bugzilla.suse.com/1185859"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185862 for CVE-2020-24587",
          "url": "https://bugzilla.suse.com/1185862"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192868 for CVE-2020-24587",
          "url": "https://bugzilla.suse.com/1192868"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-24587"
    },
    {
      "cve": "CVE-2020-24588",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-24588"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-24588",
          "url": "https://www.suse.com/security/cve/CVE-2020-24588"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185861 for CVE-2020-24588",
          "url": "https://bugzilla.suse.com/1185861"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192868 for CVE-2020-24588",
          "url": "https://bugzilla.suse.com/1192868"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199701 for CVE-2020-24588",
          "url": "https://bugzilla.suse.com/1199701"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-24588"
    },
    {
      "cve": "CVE-2020-25639",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25639"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A NULL pointer dereference flaw was found in the Linux kernel\u0027s GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user calls ioctl DRM_IOCTL_NOUVEAU_CHANNEL_ALLOC. This flaw allows a local user to crash the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25639",
          "url": "https://www.suse.com/security/cve/CVE-2020-25639"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1176846 for CVE-2020-25639",
          "url": "https://bugzilla.suse.com/1176846"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-25639"
    },
    {
      "cve": "CVE-2020-25656",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25656"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25656",
          "url": "https://www.suse.com/security/cve/CVE-2020-25656"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177766 for CVE-2020-25656",
          "url": "https://bugzilla.suse.com/1177766"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-25656"
    },
    {
      "cve": "CVE-2020-25668",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25668"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in Linux Kernel because access to the global variable fg_console is not properly synchronized leading to a use after free in con_font_op.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25668",
          "url": "https://www.suse.com/security/cve/CVE-2020-25668"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178123 for CVE-2020-25668",
          "url": "https://bugzilla.suse.com/1178123"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178622 for CVE-2020-25668",
          "url": "https://bugzilla.suse.com/1178622"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196914 for CVE-2020-25668",
          "url": "https://bugzilla.suse.com/1196914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-25668"
    },
    {
      "cve": "CVE-2020-26141",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-26141"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-26141",
          "url": "https://www.suse.com/security/cve/CVE-2020-26141"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185987 for CVE-2020-26141",
          "url": "https://bugzilla.suse.com/1185987"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-26141"
    },
    {
      "cve": "CVE-2020-2732",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-2732"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some circumstances, an L2 guest may trick the L0 guest into accessing sensitive L1 resources that should be inaccessible to the L2 guest.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-2732",
          "url": "https://www.suse.com/security/cve/CVE-2020-2732"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1163971 for CVE-2020-2732",
          "url": "https://bugzilla.suse.com/1163971"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.2,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2020-2732"
    },
    {
      "cve": "CVE-2020-29660",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-29660"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-29660",
          "url": "https://www.suse.com/security/cve/CVE-2020-29660"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179745 for CVE-2020-29660",
          "url": "https://bugzilla.suse.com/1179745"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179877 for CVE-2020-29660",
          "url": "https://bugzilla.suse.com/1179877"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-29660"
    },
    {
      "cve": "CVE-2020-29661",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-29661"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-29661",
          "url": "https://www.suse.com/security/cve/CVE-2020-29661"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179745 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1179745"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179877 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1179877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214268 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1214268"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218966 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1218966"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-29661"
    },
    {
      "cve": "CVE-2020-8648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-8648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_receive_buf_common function in drivers/tty/n_tty.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-8648",
          "url": "https://www.suse.com/security/cve/CVE-2020-8648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1162928 for CVE-2020-8648",
          "url": "https://bugzilla.suse.com/1162928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-8648"
    },
    {
      "cve": "CVE-2020-8694",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-8694"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient access control in the Linux kernel driver for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-8694",
          "url": "https://www.suse.com/security/cve/CVE-2020-8694"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1170415 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1170415"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1170446 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1170446"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178591 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1178591"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178700 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1178700"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179661 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1179661"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-8694"
    },
    {
      "cve": "CVE-2021-23133",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-23133"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)-\u003esctp.addr_wq_lock then an element is removed from the auto_asconf_splist list without any proper locking. This can be exploited by an attacker with network service privileges to escalate to root or from the context of an unprivileged user directly if a BPF_CGROUP_INET_SOCK_CREATE is attached which denies creation of some SCTP socket.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-23133",
          "url": "https://www.suse.com/security/cve/CVE-2021-23133"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184675 for CVE-2021-23133",
          "url": "https://bugzilla.suse.com/1184675"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185901 for CVE-2021-23133",
          "url": "https://bugzilla.suse.com/1185901"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-23133"
    },
    {
      "cve": "CVE-2021-26708",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-26708"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race conditions in the AF_VSOCK implementation are caused by wrong locking in net/vmw_vsock/af_vsock.c. The race conditions were implicitly introduced in the commits that added VSOCK multi-transport support.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-26708",
          "url": "https://www.suse.com/security/cve/CVE-2021-26708"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1181806 for CVE-2021-26708",
          "url": "https://bugzilla.suse.com/1181806"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1183298 for CVE-2021-26708",
          "url": "https://bugzilla.suse.com/1183298"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-26708"
    },
    {
      "cve": "CVE-2021-28971",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-28971"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c in the Linux kernel through 5.11.8 on some Haswell CPUs, userspace applications (such as perf-fuzzer) can cause a system crash because the PEBS status in a PEBS record is mishandled, aka CID-d88d05a9e0b6.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-28971",
          "url": "https://www.suse.com/security/cve/CVE-2021-28971"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184196 for CVE-2021-28971",
          "url": "https://bugzilla.suse.com/1184196"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-28971"
    },
    {
      "cve": "CVE-2021-32606",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-32606"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 5.11 through 5.12.2, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. (This does not affect earlier versions that lack CAN ISOTP SF_BROADCAST support.)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-32606",
          "url": "https://www.suse.com/security/cve/CVE-2021-32606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185953 for CVE-2021-32606",
          "url": "https://bugzilla.suse.com/1185953"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-32606"
    },
    {
      "cve": "CVE-2021-33909",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-33909"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-33909",
          "url": "https://www.suse.com/security/cve/CVE-2021-33909"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188062 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1188062"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188063 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1188063"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188257 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1188257"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189302 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1189302"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190859 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1190859"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-33909"
    },
    {
      "cve": "CVE-2021-3483",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3483"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Nosy driver in the Linux kernel. This issue allows a device to be inserted twice into a doubly-linked list, leading to a use-after-free when one of these devices is removed. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. Versions before kernel 5.12-rc6 are affected",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3483",
          "url": "https://www.suse.com/security/cve/CVE-2021-3483"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184393 for CVE-2021-3483",
          "url": "https://bugzilla.suse.com/1184393"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3483"
    },
    {
      "cve": "CVE-2021-3489",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3489"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The eBPF RINGBUF bpf_ringbuf_reserve() function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attacker to perform out-of-bounds writes within the kernel and therefore, arbitrary code execution. This issue was fixed via commit 4b81ccebaeee (\"bpf, ringbuf: Deny reserve of buffers larger than ringbuf\") (v5.13-rc4) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced via 457f44363a88 (\"bpf: Implement BPF ring buffer and verifier support for it\") (v5.8-rc1).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3489",
          "url": "https://www.suse.com/security/cve/CVE-2021-3489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185640 for CVE-2021-3489",
          "url": "https://bugzilla.suse.com/1185640"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185856 for CVE-2021-3489",
          "url": "https://bugzilla.suse.com/1185856"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3489"
    },
    {
      "cve": "CVE-2021-3490",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3490"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly update 32-bit bounds, which could be turned into out of bounds reads and writes in the Linux kernel and therefore, arbitrary code execution. This issue was fixed via commit 049c4e13714e (\"bpf: Fix alu32 const subreg bound tracking on bitwise operations\") (v5.13-rc4) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. The AND/OR issues were introduced by commit 3f50f132d840 (\"bpf: Verifier, do explicit ALU32 bounds tracking\") (5.7-rc1) and the XOR variant was introduced by 2921c90d4718 (\"bpf:Fix a verifier failure with xor\") ( 5.10-rc1).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3490",
          "url": "https://www.suse.com/security/cve/CVE-2021-3490"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185641 for CVE-2021-3490",
          "url": "https://bugzilla.suse.com/1185641"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185796 for CVE-2021-3490",
          "url": "https://bugzilla.suse.com/1185796"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3490"
    },
    {
      "cve": "CVE-2021-3491",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3491"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/\u003cPID\u003e/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b (\"io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers\") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c (\"io_uring: add IORING_OP_PROVIDE_BUFFERS\") (v5.7-rc1).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3491",
          "url": "https://www.suse.com/security/cve/CVE-2021-3491"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185642 for CVE-2021-3491",
          "url": "https://bugzilla.suse.com/1185642"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1187090 for CVE-2021-3491",
          "url": "https://bugzilla.suse.com/1187090"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3491"
    },
    {
      "cve": "CVE-2021-3542",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3542"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-42739. Reason: This candidate is a reservation duplicate of CVE-2021-42739. Notes: All CVE users should reference CVE-2021-42739 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3542",
          "url": "https://www.suse.com/security/cve/CVE-2021-3542"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184673 for CVE-2021-3542",
          "url": "https://bugzilla.suse.com/1184673"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1186063 for CVE-2021-3542",
          "url": "https://bugzilla.suse.com/1186063"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3542"
    },
    {
      "cve": "CVE-2021-3640",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3640"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable faulting memory page. A privileged local user could use this flaw to crash the system or escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3640",
          "url": "https://www.suse.com/security/cve/CVE-2021-3640"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188172 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1188172"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188613 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1188613"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191530 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1191530"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196810 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1196810"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196914 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1196914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3640"
    },
    {
      "cve": "CVE-2021-3653",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3653"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the KVM\u0027s AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the \"int_ctl\" field, this issue could allow a malicious L1 to enable AVIC support (Advanced Virtual Interrupt Controller) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape. This flaw affects Linux kernel versions prior to 5.14-rc7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3653",
          "url": "https://www.suse.com/security/cve/CVE-2021-3653"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189399 for CVE-2021-3653",
          "url": "https://bugzilla.suse.com/1189399"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189420 for CVE-2021-3653",
          "url": "https://bugzilla.suse.com/1189420"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196914 for CVE-2021-3653",
          "url": "https://bugzilla.suse.com/1196914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3653"
    },
    {
      "cve": "CVE-2021-3656",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3656"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the KVM\u0027s AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the \"virt_ext\" field, this issue could allow a malicious L1 to disable both VMLOAD/VMSAVE intercepts and VLS (Virtual VMLOAD/VMSAVE) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3656",
          "url": "https://www.suse.com/security/cve/CVE-2021-3656"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189400 for CVE-2021-3656",
          "url": "https://bugzilla.suse.com/1189400"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189418 for CVE-2021-3656",
          "url": "https://bugzilla.suse.com/1189418"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3656"
    },
    {
      "cve": "CVE-2021-3744",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3744"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption). This vulnerability is similar with the older CVE-2019-18808.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3744",
          "url": "https://www.suse.com/security/cve/CVE-2021-3744"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189884 for CVE-2021-3744",
          "url": "https://bugzilla.suse.com/1189884"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190534 for CVE-2021-3744",
          "url": "https://bugzilla.suse.com/1190534"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3744"
    },
    {
      "cve": "CVE-2021-3753",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3753"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A race problem was seen in the vt_k_ioctl in drivers/tty/vt/vt_ioctl.c in the Linux kernel, which may cause an out of bounds read in vt as the write access to vc_mode is not protected by lock-in vt_ioctl (KDSETMDE). The highest threat from this vulnerability is to data confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3753",
          "url": "https://www.suse.com/security/cve/CVE-2021-3753"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190025 for CVE-2021-3753",
          "url": "https://bugzilla.suse.com/1190025"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2021-3753"
    },
    {
      "cve": "CVE-2021-37576",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-37576"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-37576",
          "url": "https://www.suse.com/security/cve/CVE-2021-37576"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188838 for CVE-2021-37576",
          "url": "https://bugzilla.suse.com/1188838"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188842 for CVE-2021-37576",
          "url": "https://bugzilla.suse.com/1188842"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190276 for CVE-2021-37576",
          "url": "https://bugzilla.suse.com/1190276"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-37576"
    },
    {
      "cve": "CVE-2021-3759",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3759"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory overflow vulnerability was found in the Linux kernel\u0027s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from this vulnerability is to system availability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3759",
          "url": "https://www.suse.com/security/cve/CVE-2021-3759"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190115 for CVE-2021-3759",
          "url": "https://bugzilla.suse.com/1190115"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3759"
    },
    {
      "cve": "CVE-2021-38166",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-38166"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In kernel/bpf/hashtab.c in the Linux kernel through 5.13.8, there is an integer overflow and out-of-bounds write when many elements are placed in a single bucket. NOTE: exploitation might be impractical without the CAP_SYS_ADMIN capability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-38166",
          "url": "https://www.suse.com/security/cve/CVE-2021-38166"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189233 for CVE-2021-38166",
          "url": "https://bugzilla.suse.com/1189233"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-38166"
    },
    {
      "cve": "CVE-2021-43976",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-43976"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.15.2, mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can connect a crafted USB device) to cause a denial of service (skb_over_panic).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-43976",
          "url": "https://www.suse.com/security/cve/CVE-2021-43976"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192847 for CVE-2021-43976",
          "url": "https://bugzilla.suse.com/1192847"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-43976"
    },
    {
      "cve": "CVE-2022-0185",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0185"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivileged (in case of unprivileged user namespaces enabled, otherwise needs namespaced CAP_SYS_ADMIN privilege) local user able to open a filesystem that does not support the Filesystem Context API (and thus fallbacks to legacy handling) could use this flaw to escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0185",
          "url": "https://www.suse.com/security/cve/CVE-2022-0185"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194517 for CVE-2022-0185",
          "url": "https://bugzilla.suse.com/1194517"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194737 for CVE-2022-0185",
          "url": "https://bugzilla.suse.com/1194737"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-0185"
    },
    {
      "cve": "CVE-2022-0330",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0330"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A random memory access flaw was found in the Linux kernel\u0027s GPU i915 kernel driver functionality in the way a user may run malicious code on the GPU. This flaw allows a local user to crash the system or escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0330",
          "url": "https://www.suse.com/security/cve/CVE-2022-0330"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194880 for CVE-2022-0330",
          "url": "https://bugzilla.suse.com/1194880"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195950 for CVE-2022-0330",
          "url": "https://bugzilla.suse.com/1195950"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-0330"
    },
    {
      "cve": "CVE-2022-0847",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0847"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the way the \"flags\" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0847",
          "url": "https://www.suse.com/security/cve/CVE-2022-0847"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196584 for CVE-2022-0847",
          "url": "https://bugzilla.suse.com/1196584"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196601 for CVE-2022-0847",
          "url": "https://bugzilla.suse.com/1196601"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-0847"
    },
    {
      "cve": "CVE-2022-0886",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0886"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-27666. Reason: This candidate is a reservation duplicate of CVE-2022-27666. Notes: All CVE users should reference CVE-2022-27666 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0886",
          "url": "https://www.suse.com/security/cve/CVE-2022-0886"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197131 for CVE-2022-0886",
          "url": "https://bugzilla.suse.com/1197131"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197133 for CVE-2022-0886",
          "url": "https://bugzilla.suse.com/1197133"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-0886"
    },
    {
      "cve": "CVE-2022-1462",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1462"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds read flaw was found in the Linux kernel\u0027s TeleTYpe subsystem. The issue occurs in how a user triggers a race condition using ioctls TIOCSPTLCK and TIOCGPTPEER and TIOCSTI and TCXONC with leakage of memory in the flush_to_ldisc function. This flaw allows a local user to crash the system or read unauthorized random data from memory.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1462",
          "url": "https://www.suse.com/security/cve/CVE-2022-1462"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198829 for CVE-2022-1462",
          "url": "https://bugzilla.suse.com/1198829"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-1462"
    },
    {
      "cve": "CVE-2022-1516",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1516"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A NULL pointer dereference flaw was found in the Linux kernel\u0027s X.25 set of standardized network protocols functionality in the way a user terminates their session using a simulated Ethernet card and continued usage of this connection. This flaw allows a local user to crash the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1516",
          "url": "https://www.suse.com/security/cve/CVE-2022-1516"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199012 for CVE-2022-1516",
          "url": "https://bugzilla.suse.com/1199012"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-1516"
    },
    {
      "cve": "CVE-2022-1679",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1679"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in the Linux kernel\u0027s Atheros wireless adapter driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages. This flaw allows a local user to crash or potentially escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1679",
          "url": "https://www.suse.com/security/cve/CVE-2022-1679"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199487 for CVE-2022-1679",
          "url": "https://bugzilla.suse.com/1199487"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201080 for CVE-2022-1679",
          "url": "https://bugzilla.suse.com/1201080"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201832 for CVE-2022-1679",
          "url": "https://bugzilla.suse.com/1201832"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204132 for CVE-2022-1679",
          "url": "https://bugzilla.suse.com/1204132"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212316 for CVE-2022-1679",
          "url": "https://bugzilla.suse.com/1212316"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-1679"
    },
    {
      "cve": "CVE-2022-1729",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1729"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A race condition was found the Linux kernel in perf_event_open() which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives such as kernel address information leak, arbitrary execution, etc.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1729",
          "url": "https://www.suse.com/security/cve/CVE-2022-1729"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199507 for CVE-2022-1729",
          "url": "https://bugzilla.suse.com/1199507"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199697 for CVE-2022-1729",
          "url": "https://bugzilla.suse.com/1199697"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201832 for CVE-2022-1729",
          "url": "https://bugzilla.suse.com/1201832"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-1729"
    },
    {
      "cve": "CVE-2022-1852",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1852"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A NULL pointer dereference flaw was found in the Linux kernel\u0027s KVM module, which can lead to a denial of service in the x86_emulate_insn in arch/x86/kvm/emulate.c. This flaw occurs while executing an illegal instruction in guest in the Intel CPU.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1852",
          "url": "https://www.suse.com/security/cve/CVE-2022-1852"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199875 for CVE-2022-1852",
          "url": "https://bugzilla.suse.com/1199875"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-1852"
    },
    {
      "cve": "CVE-2022-1966",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1966"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-32250. Reason: This candidate is a duplicate of CVE-2022-32250. Notes: All CVE users should reference CVE-2022-32250 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1966",
          "url": "https://www.suse.com/security/cve/CVE-2022-1966"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200015 for CVE-2022-1966",
          "url": "https://bugzilla.suse.com/1200015"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200268 for CVE-2022-1966",
          "url": "https://bugzilla.suse.com/1200268"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200494 for CVE-2022-1966",
          "url": "https://bugzilla.suse.com/1200494"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200529 for CVE-2022-1966",
          "url": "https://bugzilla.suse.com/1200529"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-1966"
    },
    {
      "cve": "CVE-2022-1972",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1972"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-2078. Reason: This candidate is a reservation duplicate of CVE-2022-2078. Notes: All CVE users should reference CVE-2022-2078 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1972",
          "url": "https://www.suse.com/security/cve/CVE-2022-1972"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200019 for CVE-2022-1972",
          "url": "https://bugzilla.suse.com/1200019"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200266 for CVE-2022-1972",
          "url": "https://bugzilla.suse.com/1200266"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-1972"
    },
    {
      "cve": "CVE-2022-1973",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1973"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in the Linux kernel in log_replay in fs/ntfs3/fslog.c in the NTFS journal. This flaw allows a local attacker to crash the system and leads to a kernel information leak problem.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1973",
          "url": "https://www.suse.com/security/cve/CVE-2022-1973"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200023 for CVE-2022-1973",
          "url": "https://bugzilla.suse.com/1200023"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-1973"
    },
    {
      "cve": "CVE-2022-22942",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-22942"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling \u0027file\u0027 pointer.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-22942",
          "url": "https://www.suse.com/security/cve/CVE-2022-22942"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195065 for CVE-2022-22942",
          "url": "https://bugzilla.suse.com/1195065"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195951 for CVE-2022-22942",
          "url": "https://bugzilla.suse.com/1195951"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-22942"
    },
    {
      "cve": "CVE-2022-2308",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-2308"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in vDPA with VDUSE backend. There are currently no checks in VDUSE kernel driver to ensure the size of the device config space is in line with the features advertised by the VDUSE userspace application. In case of a mismatch, Virtio drivers config read helpers do not initialize the memory indirectly passed to vduse_vdpa_get_config() returning uninitialized memory from the stack. This could cause undefined behavior or data leaks in Virtio drivers.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-2308",
          "url": "https://www.suse.com/security/cve/CVE-2022-2308"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1202573 for CVE-2022-2308",
          "url": "https://bugzilla.suse.com/1202573"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-2308"
    },
    {
      "cve": "CVE-2022-24958",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-24958"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev-\u003ebuf release.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-24958",
          "url": "https://www.suse.com/security/cve/CVE-2022-24958"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195905 for CVE-2022-24958",
          "url": "https://bugzilla.suse.com/1195905"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-24958"
    },
    {
      "cve": "CVE-2022-2588",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-2588"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-2588",
          "url": "https://www.suse.com/security/cve/CVE-2022-2588"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1202096 for CVE-2022-2588",
          "url": "https://bugzilla.suse.com/1202096"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203613 for CVE-2022-2588",
          "url": "https://bugzilla.suse.com/1203613"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204183 for CVE-2022-2588",
          "url": "https://bugzilla.suse.com/1204183"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-2588",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-2588"
    },
    {
      "cve": "CVE-2022-2590",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-2590"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A race condition was found in the way the Linux kernel\u0027s memory subsystem handled the copy-on-write (COW) breakage of private read-only shared memory mappings. This flaw allows an unprivileged, local user to gain write access to read-only memory mappings, increasing their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-2590",
          "url": "https://www.suse.com/security/cve/CVE-2022-2590"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1202013 for CVE-2022-2590",
          "url": "https://bugzilla.suse.com/1202013"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1202089 for CVE-2022-2590",
          "url": "https://bugzilla.suse.com/1202089"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-2590"
    },
    {
      "cve": "CVE-2022-26490",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-26490"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of untrusted length parameters.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-26490",
          "url": "https://www.suse.com/security/cve/CVE-2022-26490"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196830 for CVE-2022-26490",
          "url": "https://bugzilla.suse.com/1196830"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201656 for CVE-2022-26490",
          "url": "https://bugzilla.suse.com/1201656"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201969 for CVE-2022-26490",
          "url": "https://bugzilla.suse.com/1201969"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1211495 for CVE-2022-26490",
          "url": "https://bugzilla.suse.com/1211495"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-26490"
    },
    {
      "cve": "CVE-2022-28388",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-28388"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-28388",
          "url": "https://www.suse.com/security/cve/CVE-2022-28388"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198032 for CVE-2022-28388",
          "url": "https://bugzilla.suse.com/1198032"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-28388"
    },
    {
      "cve": "CVE-2022-28389",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-28389"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "mcba_usb_start_xmit in drivers/net/can/usb/mcba_usb.c in the Linux kernel through 5.17.1 has a double free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-28389",
          "url": "https://www.suse.com/security/cve/CVE-2022-28389"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198033 for CVE-2022-28389",
          "url": "https://bugzilla.suse.com/1198033"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201657 for CVE-2022-28389",
          "url": "https://bugzilla.suse.com/1201657"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-28389"
    },
    {
      "cve": "CVE-2022-28390",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-28390"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-28390",
          "url": "https://www.suse.com/security/cve/CVE-2022-28390"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198031 for CVE-2022-28390",
          "url": "https://bugzilla.suse.com/1198031"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201517 for CVE-2022-28390",
          "url": "https://bugzilla.suse.com/1201517"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1207969 for CVE-2022-28390",
          "url": "https://bugzilla.suse.com/1207969"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-28390"
    },
    {
      "cve": "CVE-2022-28893",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-28893"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The SUNRPC subsystem in the Linux kernel through 5.17.2 can call xs_xprt_free before ensuring that sockets are in the intended state.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-28893",
          "url": "https://www.suse.com/security/cve/CVE-2022-28893"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198330 for CVE-2022-28893",
          "url": "https://bugzilla.suse.com/1198330"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-28893"
    },
    {
      "cve": "CVE-2022-29900",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-29900"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitecture-dependent conditions.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-29900",
          "url": "https://www.suse.com/security/cve/CVE-2022-29900"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199657 for CVE-2022-29900",
          "url": "https://bugzilla.suse.com/1199657"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201469 for CVE-2022-29900",
          "url": "https://bugzilla.suse.com/1201469"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1207894 for CVE-2022-29900",
          "url": "https://bugzilla.suse.com/1207894"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-29900"
    },
    {
      "cve": "CVE-2022-29901",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-29901"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code execution under certain microarchitecture-dependent conditions.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-29901",
          "url": "https://www.suse.com/security/cve/CVE-2022-29901"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201469 for CVE-2022-29901",
          "url": "https://bugzilla.suse.com/1201469"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1207894 for CVE-2022-29901",
          "url": "https://bugzilla.suse.com/1207894"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-29901"
    },
    {
      "cve": "CVE-2022-29968",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-29968"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 5.17.5. io_rw_init_file in fs/io_uring.c lacks initialization of kiocb-\u003eprivate.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-29968",
          "url": "https://www.suse.com/security/cve/CVE-2022-29968"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199087 for CVE-2022-29968",
          "url": "https://bugzilla.suse.com/1199087"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-29968"
    },
    {
      "cve": "CVE-2022-3424",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-3424"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in the Linux kernel\u0027s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is called by the user, where a fail pass occurs in the gru_check_chiplet_assignment function. This flaw allows a local user to crash or potentially escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-3424",
          "url": "https://www.suse.com/security/cve/CVE-2022-3424"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204166 for CVE-2022-3424",
          "url": "https://bugzilla.suse.com/1204166"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204167 for CVE-2022-3424",
          "url": "https://bugzilla.suse.com/1204167"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208044 for CVE-2022-3424",
          "url": "https://bugzilla.suse.com/1208044"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212309 for CVE-2022-3424",
          "url": "https://bugzilla.suse.com/1212309"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-3424"
    },
    {
      "cve": "CVE-2022-34918",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-34918"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nft_set_elem_init (leading to a buffer overflow) could be used by a local attacker to escalate privileges, a different vulnerability than CVE-2022-32250. (The attacker can obtain root access, but must start with an unprivileged user namespace to obtain CAP_NET_ADMIN access.) This can be fixed in nft_setelem_parse_data in net/netfilter/nf_tables_api.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-34918",
          "url": "https://www.suse.com/security/cve/CVE-2022-34918"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201171 for CVE-2022-34918",
          "url": "https://bugzilla.suse.com/1201171"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201177 for CVE-2022-34918",
          "url": "https://bugzilla.suse.com/1201177"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201222 for CVE-2022-34918",
          "url": "https://bugzilla.suse.com/1201222"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-34918"
    },
    {
      "cve": "CVE-2022-3628",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-3628"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device. This can allow a local user to crash the system or escalate their privileges.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-3628",
          "url": "https://www.suse.com/security/cve/CVE-2022-3628"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204868 for CVE-2022-3628",
          "url": "https://bugzilla.suse.com/1204868"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-3628"
    },
    {
      "cve": "CVE-2022-3640",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-3640"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A vulnerability, which was classified as critical, was found in Linux Kernel. Affected is the function l2cap_conn_del of the file net/bluetooth/l2cap_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211944.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-3640",
          "url": "https://www.suse.com/security/cve/CVE-2022-3640"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204619 for CVE-2022-3640",
          "url": "https://bugzilla.suse.com/1204619"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204624 for CVE-2022-3640",
          "url": "https://bugzilla.suse.com/1204624"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-3640",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-3640"
    },
    {
      "cve": "CVE-2022-40982",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-40982"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-40982",
          "url": "https://www.suse.com/security/cve/CVE-2022-40982"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206418 for CVE-2022-40982",
          "url": "https://bugzilla.suse.com/1206418"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215674 for CVE-2022-40982",
          "url": "https://bugzilla.suse.com/1215674"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-40982"
    },
    {
      "cve": "CVE-2022-41218",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-41218"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In drivers/media/dvb-core/dmxdev.c in the Linux kernel through 5.19.10, there is a use-after-free caused by refcount races, affecting dvb_demux_open and dvb_dmxdev_release.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-41218",
          "url": "https://www.suse.com/security/cve/CVE-2022-41218"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1202960 for CVE-2022-41218",
          "url": "https://bugzilla.suse.com/1202960"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203606 for CVE-2022-41218",
          "url": "https://bugzilla.suse.com/1203606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205313 for CVE-2022-41218",
          "url": "https://bugzilla.suse.com/1205313"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-41218",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-41218"
    },
    {
      "cve": "CVE-2022-41674",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-41674"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel before 5.19.16. Attackers able to inject WLAN frames could cause a buffer overflow in the ieee80211_bss_info_update function in net/mac80211/scan.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-41674",
          "url": "https://www.suse.com/security/cve/CVE-2022-41674"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203770 for CVE-2022-41674",
          "url": "https://bugzilla.suse.com/1203770"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203994 for CVE-2022-41674",
          "url": "https://bugzilla.suse.com/1203994"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-41674",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-41674"
    },
    {
      "cve": "CVE-2022-42719",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-42719"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free in the mac80211 stack when parsing a multi-BSSID element in the Linux kernel 5.2 through 5.19.x before 5.19.16 could be used by attackers (able to inject WLAN frames) to crash the kernel and potentially execute code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-42719",
          "url": "https://www.suse.com/security/cve/CVE-2022-42719"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204051 for CVE-2022-42719",
          "url": "https://bugzilla.suse.com/1204051"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204292 for CVE-2022-42719",
          "url": "https://bugzilla.suse.com/1204292"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-42719",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-42719"
    },
    {
      "cve": "CVE-2022-42720",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-42720"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to trigger use-after-free conditions to potentially execute code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-42720",
          "url": "https://www.suse.com/security/cve/CVE-2022-42720"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204059 for CVE-2022-42720",
          "url": "https://bugzilla.suse.com/1204059"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204291 for CVE-2022-42720",
          "url": "https://bugzilla.suse.com/1204291"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-42720",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-42720"
    },
    {
      "cve": "CVE-2022-42721",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-42721"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to corrupt a linked list and, in turn, potentially execute code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-42721",
          "url": "https://www.suse.com/security/cve/CVE-2022-42721"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204060 for CVE-2022-42721",
          "url": "https://bugzilla.suse.com/1204060"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204290 for CVE-2022-42721",
          "url": "https://bugzilla.suse.com/1204290"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-42721",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-42721"
    },
    {
      "cve": "CVE-2022-42722",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-42722"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 5.8 through 5.19.x before 5.19.16, local attackers able to inject WLAN frames into the mac80211 stack could cause a NULL pointer dereference denial-of-service attack against the beacon protection of P2P devices.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-42722",
          "url": "https://www.suse.com/security/cve/CVE-2022-42722"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204125 for CVE-2022-42722",
          "url": "https://bugzilla.suse.com/1204125"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204289 for CVE-2022-42722",
          "url": "https://bugzilla.suse.com/1204289"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-42722",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-42722"
    },
    {
      "cve": "CVE-2022-4379",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-4379"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability was found in __nfs42_ssc_open() in fs/nfs/nfs4file.c in the Linux kernel. This flaw allows an attacker to conduct a remote denial",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-4379",
          "url": "https://www.suse.com/security/cve/CVE-2022-4379"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206209 for CVE-2022-4379",
          "url": "https://bugzilla.suse.com/1206209"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206373 for CVE-2022-4379",
          "url": "https://bugzilla.suse.com/1206373"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-4379"
    },
    {
      "cve": "CVE-2022-44032",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-44032"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/cm4000_cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open(), aka a race condition between cmm_open() and cm4000_detach().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-44032",
          "url": "https://www.suse.com/security/cve/CVE-2022-44032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204894 for CVE-2022-44032",
          "url": "https://bugzilla.suse.com/1204894"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212290 for CVE-2022-44032",
          "url": "https://bugzilla.suse.com/1212290"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-44032"
    },
    {
      "cve": "CVE-2022-44033",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-44033"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/cm4040_cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open(), aka a race condition between cm4040_open() and reader_detach().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-44033",
          "url": "https://www.suse.com/security/cve/CVE-2022-44033"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204922 for CVE-2022-44033",
          "url": "https://bugzilla.suse.com/1204922"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212306 for CVE-2022-44033",
          "url": "https://bugzilla.suse.com/1212306"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-44033"
    },
    {
      "cve": "CVE-2022-44034",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-44034"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/scr24x_cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open(), aka a race condition between scr24x_open() and scr24x_remove().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-44034",
          "url": "https://www.suse.com/security/cve/CVE-2022-44034"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204901 for CVE-2022-44034",
          "url": "https://bugzilla.suse.com/1204901"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-44034"
    },
    {
      "cve": "CVE-2022-45884",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45884"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free, related to dvb_register_device dynamically allocating fops.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45884",
          "url": "https://www.suse.com/security/cve/CVE-2022-45884"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205756 for CVE-2022-45884",
          "url": "https://bugzilla.suse.com/1205756"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-45884"
    },
    {
      "cve": "CVE-2022-45885",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45885"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_frontend.c has a race condition that can cause a use-after-free when a device is disconnected.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45885",
          "url": "https://www.suse.com/security/cve/CVE-2022-45885"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205758 for CVE-2022-45885",
          "url": "https://bugzilla.suse.com/1205758"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-45885"
    },
    {
      "cve": "CVE-2022-45886",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45886"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_net.c has a .disconnect versus dvb_device_open race condition that leads to a use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45886",
          "url": "https://www.suse.com/security/cve/CVE-2022-45886"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205760 for CVE-2022-45886",
          "url": "https://bugzilla.suse.com/1205760"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-45886"
    },
    {
      "cve": "CVE-2022-45887",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45887"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.9. drivers/media/usb/ttusb-dec/ttusb_dec.c has a memory leak because of the lack of a dvb_frontend_detach call.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45887",
          "url": "https://www.suse.com/security/cve/CVE-2022-45887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205762 for CVE-2022-45887",
          "url": "https://bugzilla.suse.com/1205762"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1220015 for CVE-2022-45887",
          "url": "https://bugzilla.suse.com/1220015"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-45887"
    },
    {
      "cve": "CVE-2022-45888",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45888"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.9. drivers/char/xillybus/xillyusb.c has a race condition and use-after-free during physical removal of a USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45888",
          "url": "https://www.suse.com/security/cve/CVE-2022-45888"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205764 for CVE-2022-45888",
          "url": "https://bugzilla.suse.com/1205764"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-45888"
    },
    {
      "cve": "CVE-2022-45919",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45919"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.10. In drivers/media/dvb-core/dvb_ca_en50221.c, a use-after-free can occur is there is a disconnect after an open, because of the lack of a wait_event.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45919",
          "url": "https://www.suse.com/security/cve/CVE-2022-45919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205803 for CVE-2022-45919",
          "url": "https://bugzilla.suse.com/1205803"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208912 for CVE-2022-45919",
          "url": "https://bugzilla.suse.com/1208912"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214128 for CVE-2022-45919",
          "url": "https://bugzilla.suse.com/1214128"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215674 for CVE-2022-45919",
          "url": "https://bugzilla.suse.com/1215674"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-45919"
    },
    {
      "cve": "CVE-2022-45934",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45934"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45934",
          "url": "https://www.suse.com/security/cve/CVE-2022-45934"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205796 for CVE-2022-45934",
          "url": "https://bugzilla.suse.com/1205796"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212292 for CVE-2022-45934",
          "url": "https://bugzilla.suse.com/1212292"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-45934"
    },
    {
      "cve": "CVE-2023-0045",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-0045"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ib_prctl_set   function updates the Thread Information Flags (TIFs) for the task and updates the SPEC_CTRL MSR on the function __speculation_ctrl_update, but the IBPB is only issued on the next schedule, when the TIF bits are checked. This leaves the victim vulnerable to values already injected on the BTB, prior to the prctl syscall.   The patch that added the support for the conditional mitigation via prctl (ib_prctl_set) dates back to the kernel 4.9.176.\n\nWe recommend upgrading past commit  a664ec9158eeddd75121d39c9a0758016097fa96\n\n",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-0045",
          "url": "https://www.suse.com/security/cve/CVE-2023-0045"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1207773 for CVE-2023-0045",
          "url": "https://bugzilla.suse.com/1207773"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-0045"
    },
    {
      "cve": "CVE-2023-1076",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-1076"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux Kernel. The tun/tap sockets have their socket UID hardcoded to 0 due to a type confusion in their initialization function. While it will be often correct, as tuntap devices require CAP_NET_ADMIN, it may not always be the case, e.g., a non-root user only having that capability. This would make tun/tap sockets being incorrectly treated in filtering/routing decisions, possibly bypassing network filters.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-1076",
          "url": "https://www.suse.com/security/cve/CVE-2023-1076"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208599 for CVE-2023-1076",
          "url": "https://bugzilla.suse.com/1208599"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214019 for CVE-2023-1076",
          "url": "https://bugzilla.suse.com/1214019"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-1076"
    },
    {
      "cve": "CVE-2023-1078",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-1078"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux Kernel in RDS (Reliable Datagram Sockets) protocol. The rds_rm_zerocopy_callback() uses list_entry() on the head of a list causing a type confusion. Local user can trigger this with rds_message_put(). Type confusion leads to `struct rds_msg_zcopy_info *info` actually points to something else that is potentially controlled by local user. It is known how to trigger this, which causes an out of bounds access, and a lock corruption.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-1078",
          "url": "https://www.suse.com/security/cve/CVE-2023-1078"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208601 for CVE-2023-1078",
          "url": "https://bugzilla.suse.com/1208601"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208603 for CVE-2023-1078",
          "url": "https://bugzilla.suse.com/1208603"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-1078"
    },
    {
      "cve": "CVE-2023-1192",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-1192"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in smb2_is_status_io_timeout() in CIFS in the Linux Kernel. After CIFS transfers response data to a system call, there are still local variable points to the memory region, and if the system call frees it faster than CIFS uses it, CIFS will access a free memory region, leading to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-1192",
          "url": "https://www.suse.com/security/cve/CVE-2023-1192"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208995 for CVE-2023-1192",
          "url": "https://bugzilla.suse.com/1208995"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-1192"
    },
    {
      "cve": "CVE-2023-1380",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-1380"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A slab-out-of-bound read problem was found in brcmf_get_assoc_ies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux Kernel. This issue could occur when assoc_info-\u003ereq_len data is bigger than the size of the buffer, defined as WL_EXTRA_BUF_MAX, leading to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-1380",
          "url": "https://www.suse.com/security/cve/CVE-2023-1380"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209287 for CVE-2023-1380",
          "url": "https://bugzilla.suse.com/1209287"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2023-1380"
    },
    {
      "cve": "CVE-2023-20569",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-20569"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "\n\n\nA side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled\u202faddress, potentially leading to information disclosure.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-20569",
          "url": "https://www.suse.com/security/cve/CVE-2023-20569"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213287 for CVE-2023-20569",
          "url": "https://bugzilla.suse.com/1213287"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-20569"
    },
    {
      "cve": "CVE-2023-20593",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-20593"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "\nAn issue in \"Zen 2\" CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.\n\n\n\n\n\n\n",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-20593",
          "url": "https://www.suse.com/security/cve/CVE-2023-20593"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213286 for CVE-2023-20593",
          "url": "https://bugzilla.suse.com/1213286"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213616 for CVE-2023-20593",
          "url": "https://bugzilla.suse.com/1213616"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215674 for CVE-2023-20593",
          "url": "https://bugzilla.suse.com/1215674"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-20593"
    },
    {
      "cve": "CVE-2023-2124",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-2124"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds memory access flaw was found in the Linux kernel\u0027s XFS file system in how a user restores an XFS image after failure (with a dirty log journal). This flaw allows a local user to crash or potentially escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-2124",
          "url": "https://www.suse.com/security/cve/CVE-2023-2124"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1210498 for CVE-2023-2124",
          "url": "https://bugzilla.suse.com/1210498"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-2124"
    },
    {
      "cve": "CVE-2023-31084",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-31084"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASK_RUNNING. In dvb_frontend_get_event, wait_event_interruptible is called; the condition is dvb_frontend_test_event(fepriv,events). In dvb_frontend_test_event, down(\u0026fepriv-\u003esem) is called. However, wait_event_interruptible would put the process to sleep, and down(\u0026fepriv-\u003esem) may block the process.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-31084",
          "url": "https://www.suse.com/security/cve/CVE-2023-31084"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1210783 for CVE-2023-31084",
          "url": "https://bugzilla.suse.com/1210783"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-31084"
    },
    {
      "cve": "CVE-2023-3141",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-3141"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker to crash the system at device disconnect, possibly leading to a kernel information leak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-3141",
          "url": "https://www.suse.com/security/cve/CVE-2023-3141"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212129 for CVE-2023-3141",
          "url": "https://bugzilla.suse.com/1212129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215674 for CVE-2023-3141",
          "url": "https://bugzilla.suse.com/1215674"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-3141"
    },
    {
      "cve": "CVE-2023-3269",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-3269"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A vulnerability exists in the memory management subsystem of the Linux kernel. The lock handling for accessing and updating virtual memory areas (VMAs) is incorrect, leading to use-after-free problems. This issue can be successfully exploited to execute arbitrary kernel code, escalate containers, and gain root privileges.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-3269",
          "url": "https://www.suse.com/security/cve/CVE-2023-3269"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212395 for CVE-2023-3269",
          "url": "https://bugzilla.suse.com/1212395"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213760 for CVE-2023-3269",
          "url": "https://bugzilla.suse.com/1213760"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-3269"
    },
    {
      "cve": "CVE-2023-39192",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-39192"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Netfilter subsystem in the Linux kernel. The xt_u32 module did not validate the fields in the xt_u32 structure. This flaw allows a local privileged attacker to trigger an out-of-bounds read by setting the size fields with a value beyond the array boundaries, leading to a crash or information disclosure.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-39192",
          "url": "https://www.suse.com/security/cve/CVE-2023-39192"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215858 for CVE-2023-39192",
          "url": "https://bugzilla.suse.com/1215858"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1220015 for CVE-2023-39192",
          "url": "https://bugzilla.suse.com/1220015"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-39192"
    },
    {
      "cve": "CVE-2023-39193",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-39193"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Netfilter subsystem in the Linux kernel. The sctp_mt_check did not validate the flag_count field. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, leading to a crash or information disclosure.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-39193",
          "url": "https://www.suse.com/security/cve/CVE-2023-39193"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215860 for CVE-2023-39193",
          "url": "https://bugzilla.suse.com/1215860"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1220015 for CVE-2023-39193",
          "url": "https://bugzilla.suse.com/1220015"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-39193"
    },
    {
      "cve": "CVE-2023-4128",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-4128"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-4206, CVE-2023-4207, CVE-2023-4208.  Reason: This record is a duplicate of CVE-2023-4206, CVE-2023-4207, CVE-2023-4208. Notes: All CVE users should reference CVE-2023-4206, CVE-2023-4207, CVE-2023-4208 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-4128",
          "url": "https://www.suse.com/security/cve/CVE-2023-4128"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214149 for CVE-2023-4128",
          "url": "https://bugzilla.suse.com/1214149"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-4128"
    },
    {
      "cve": "CVE-2023-4134",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-4134"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability was found in the cyttsp4_core driver in the Linux kernel. This issue occurs in the device cleanup routine due to a possible rearming of the watchdog_timer from the workqueue. This could allow a local user to crash the system, causing a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-4134",
          "url": "https://www.suse.com/security/cve/CVE-2023-4134"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213971 for CVE-2023-4134",
          "url": "https://bugzilla.suse.com/1213971"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-4134"
    },
    {
      "cve": "CVE-2023-4194",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-4194"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s TUN/TAP functionality. This issue could allow a local user to bypass network filters and gain unauthorized access to some resources. The original patches fixing CVE-2023-1076 are incorrect or incomplete. The problem is that the following upstream commits - a096ccca6e50 (\"tun: tun_chr_open(): correctly initialize socket uid\"), - 66b2c338adce (\"tap: tap_open(): correctly initialize socket uid\"), pass \"inode-\u003ei_uid\" to sock_init_data_uid() as the last parameter and that turns out to not be accurate.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-4194",
          "url": "https://www.suse.com/security/cve/CVE-2023-4194"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214019 for CVE-2023-4194",
          "url": "https://bugzilla.suse.com/1214019"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-4194"
    },
    {
      "cve": "CVE-2023-42753",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-42753"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the `h-\u003enets` array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory buffer out-of-bound. This issue may allow a local user to crash the system or potentially escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-42753",
          "url": "https://www.suse.com/security/cve/CVE-2023-42753"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215150 for CVE-2023-42753",
          "url": "https://bugzilla.suse.com/1215150"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218613 for CVE-2023-42753",
          "url": "https://bugzilla.suse.com/1218613"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-42753"
    },
    {
      "cve": "CVE-2023-42754",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-42754"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A NULL pointer dereference flaw was found in the Linux kernel ipv4 stack. The socket buffer (skb) was assumed to be associated with a device before calling __ip_options_compile, which is not always the case if the skb is re-routed by ipvs. This issue may allow a local user with CAP_NET_ADMIN privileges to crash the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-42754",
          "url": "https://www.suse.com/security/cve/CVE-2023-42754"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215467 for CVE-2023-42754",
          "url": "https://bugzilla.suse.com/1215467"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222212 for CVE-2023-42754",
          "url": "https://bugzilla.suse.com/1222212"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-42754"
    },
    {
      "cve": "CVE-2023-42756",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-42756"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Netfilter subsystem of the Linux kernel. A race condition between IPSET_CMD_ADD and IPSET_CMD_SWAP can lead to a kernel panic due to the invocation of `__ip_set_put` on a wrong `set`. This issue may allow a local user to crash the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-42756",
          "url": "https://www.suse.com/security/cve/CVE-2023-42756"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215767 for CVE-2023-42756",
          "url": "https://bugzilla.suse.com/1215767"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-42756"
    },
    {
      "cve": "CVE-2023-4623",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-4623"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability in the Linux kernel\u0027s net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation.\n\nIf a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a parent without a link-sharing curve, then init_vf() will call vttree_insert() on the parent, but vttree_remove() will be skipped in update_vf(). This leaves a dangling pointer that can cause a use-after-free.\n\nWe recommend upgrading past commit b3d26c5702c7d6c45456326e56d2ccf3f103e60f.\n\n",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-4623",
          "url": "https://www.suse.com/security/cve/CVE-2023-4623"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215115 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1215115"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215440 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1215440"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1217444 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1217444"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1217531 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1217531"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1219698 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1219698"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221578 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1221578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221598 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1221598"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-4623"
    },
    {
      "cve": "CVE-2023-46813",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-46813"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel before 6.5.9, exploitable by local users with userspace access to MMIO registers. Incorrect access checking in the #VC handler and instruction emulation of the SEV-ES emulation of MMIO accesses could lead to arbitrary write access to kernel memory (and thus privilege escalation). This depends on a race condition through which userspace can replace an instruction before the #VC handler reads it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-46813",
          "url": "https://www.suse.com/security/cve/CVE-2023-46813"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212649 for CVE-2023-46813",
          "url": "https://bugzilla.suse.com/1212649"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1216896 for CVE-2023-46813",
          "url": "https://bugzilla.suse.com/1216896"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-46813"
    },
    {
      "cve": "CVE-2023-4881",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-4881"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** CVE-2023-4881 was wrongly assigned to a bug that was deemed to be a non-security issue by the Linux kernel security team.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-4881",
          "url": "https://www.suse.com/security/cve/CVE-2023-4881"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215221 for CVE-2023-4881",
          "url": "https://bugzilla.suse.com/1215221"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-4881"
    },
    {
      "cve": "CVE-2023-5345",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-5345"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability in the Linux kernel\u0027s fs/smb/client component can be exploited to achieve local privilege escalation.\n\nIn case of an error in smb3_fs_context_parse_param, ctx-\u003epassword was freed but the field was not set to NULL which could lead to double free.\n\nWe recommend upgrading past commit e6e43b8aa7cd3c3af686caf0c2e11819a886d705.\n\n",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-5345",
          "url": "https://www.suse.com/security/cve/CVE-2023-5345"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215899 for CVE-2023-5345",
          "url": "https://bugzilla.suse.com/1215899"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215971 for CVE-2023-5345",
          "url": "https://bugzilla.suse.com/1215971"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-5345"
    },
    {
      "cve": "CVE-2023-6606",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-6606"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds read vulnerability was found in smbCalcSize in fs/smb/client/netmisc.c in the Linux Kernel. This issue could allow a local attacker to crash the system or leak internal kernel information.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-6606",
          "url": "https://www.suse.com/security/cve/CVE-2023-6606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1217947 for CVE-2023-6606",
          "url": "https://bugzilla.suse.com/1217947"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1220015 for CVE-2023-6606",
          "url": "https://bugzilla.suse.com/1220015"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-6606"
    },
    {
      "cve": "CVE-2023-6610",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-6610"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds read vulnerability was found in smb2_dump_detail in fs/smb/client/smb2ops.c in the Linux Kernel. This issue could allow a local attacker to crash the system or leak internal kernel information.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-6610",
          "url": "https://www.suse.com/security/cve/CVE-2023-6610"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1217946 for CVE-2023-6610",
          "url": "https://bugzilla.suse.com/1217946"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-6610"
    }
  ]
}

RHSA-2018:0470

Vulnerability from csaf_redhat - Published: 2018-03-12 15:03 - Updated: 2025-11-21 18:03

Summary

Red Hat Security Advisory: Red Hat Enterprise MRG Realtime 2.5 security and enhancement update

Severity

Moderate

Notes

Topic: Updated Red Hat Enterprise Messaging, Realtime, and Grid (MRG) Realtime packages that fix multiple security issues and add one enhancement are now available for Red Hat Enterprise MRG 2.5. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

Details: Red Hat Enterprise MRG is a next-generation IT infrastructure for enterprise computing. MRG offers increased performance, reliability, interoperability, and faster computing for enterprise customers. Security Fix(es): * kernel: rds_message_alloc_sgs() function doesn't validate value used during DMA page allocation causes heap out-of-bounds write (CVE-2018-5332, Moderate) * kernel: Null pointer dereference in rds_atomic_free_op() allows denial-of-service (CVE-2018-5333, Moderate) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Enhancement(s): * The kernel-rt packages have been upgraded to version 3.10.0-693.21.1, which provides a number of security and bug fixes over the previous version. (BZ#1537669) All Red Hat Enterprise MRG Realtime users are advised to upgrade to these updated packages, which contain backported patches to correct these issues and add this enhancement.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2018-5332

In the Linux kernel through 4.14.13, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size() function in 'net/rds/rdma.c') and thus to a system panic. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2018-5333

In the Linux kernel through 4.14.13, the rds_cmsg_atomic() function in 'net/rds/rdma.c' mishandles cases where page pinning fails or an invalid address is supplied by a user. This can lead to a NULL pointer dereference in rds_atomic_free_op() and thus to a system panic.

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

References

14 references

URL	Category
https://access.redhat.com/errata/RHSA-2018:0470	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=1533890	external
https://bugzilla.redhat.com/show_bug.cgi?id=1533891	external
https://bugzilla.redhat.com/show_bug.cgi?id=1537669	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2018-5332	self
https://bugzilla.redhat.com/show_bug.cgi?id=1533890	external
https://www.cve.org/CVERecord?id=CVE-2018-5332	external
https://nvd.nist.gov/vuln/detail/CVE-2018-5332	external
https://access.redhat.com/security/cve/CVE-2018-5333	self
https://bugzilla.redhat.com/show_bug.cgi?id=1533891	external
https://www.cve.org/CVERecord?id=CVE-2018-5333	external
https://nvd.nist.gov/vuln/detail/CVE-2018-5333	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated Red Hat Enterprise Messaging, Realtime, and Grid (MRG) Realtime packages that fix multiple security issues and add one enhancement are now available for Red Hat Enterprise MRG 2.5.\n\nRed Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat Enterprise MRG is a next-generation IT infrastructure for enterprise computing. MRG offers increased performance, reliability, interoperability, and faster computing for enterprise customers.\n\nSecurity Fix(es):\n\n* kernel: rds_message_alloc_sgs() function doesn\u0027t validate value used during DMA page allocation causes heap out-of-bounds write (CVE-2018-5332, Moderate) \n\n* kernel: Null pointer dereference in rds_atomic_free_op() allows denial-of-service (CVE-2018-5333, Moderate)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nEnhancement(s):\n\n* The kernel-rt packages have been upgraded to version 3.10.0-693.21.1, which provides a number of security and bug fixes over the previous version. (BZ#1537669)\n\nAll Red Hat Enterprise MRG Realtime users are advised to upgrade to these updated packages, which contain backported patches to correct these issues and add this enhancement.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2018:0470",
        "url": "https://access.redhat.com/errata/RHSA-2018:0470"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1533890",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1533890"
      },
      {
        "category": "external",
        "summary": "1533891",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1533891"
      },
      {
        "category": "external",
        "summary": "1537669",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1537669"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0470.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat Enterprise MRG Realtime 2.5 security and enhancement update",
    "tracking": {
      "current_release_date": "2025-11-21T18:03:57+00:00",
      "generator": {
        "date": "2025-11-21T18:03:57+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2018:0470",
      "initial_release_date": "2018-03-12T15:03:01+00:00",
      "revision_history": [
        {
          "date": "2018-03-12T15:03:01+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2018-03-12T15:03:01+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T18:03:57+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat MRG Realtime for RHEL 6 Server v.2",
                "product": {
                  "name": "Red Hat MRG Realtime for RHEL 6 Server v.2",
                  "product_id": "6Server-MRG-Realtime-2",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_mrg:2:server:el6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise MRG for RHEL-6"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-devel@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
                "product": {
                  "name": "kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
                  "product_id": "kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-firmware@3.10.0-693.21.1.rt56.607.el6rt?arch=noarch\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
                "product": {
                  "name": "kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
                  "product_id": "kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-doc@3.10.0-693.21.1.rt56.607.el6rt?arch=noarch\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
                "product": {
                  "name": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
                  "product_id": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@3.10.0-693.21.1.rt56.607.el6rt?arch=src\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src"
        },
        "product_reference": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch"
        },
        "product_reference": "kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch"
        },
        "product_reference": "kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-5332",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2018-01-11T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1533890"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "In the Linux kernel through 4.14.13, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size() function in \u0027net/rds/rdma.c\u0027) and thus to a system panic. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: rds_message_alloc_sgs() function doesn\u0027t validate value used during DMA page allocation causes heap out-of-bounds write",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG 2. Future Linux kernel updates for the respective releases may address this issue.\n\nThis issue does not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 7, its real-time kernel, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE, as a code with the flaw is not built and shipped with the products listed.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2018-5332"
        },
        {
          "category": "external",
          "summary": "RHBZ#1533890",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1533890"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2018-5332",
          "url": "https://www.cve.org/CVERecord?id=CVE-2018-5332"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5332",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5332"
        }
      ],
      "release_date": "2018-01-02T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2018-03-12T15:03:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, the system must be restarted for the changes to take effect.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2018:0470"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: rds_message_alloc_sgs() function doesn\u0027t validate value used during DMA page allocation causes heap out-of-bounds write"
    },
    {
      "cve": "CVE-2018-5333",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2018-01-11T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1533891"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "In the Linux kernel through 4.14.13, the rds_cmsg_atomic() function in \u0027net/rds/rdma.c\u0027 mishandles cases where page pinning fails or an invalid address is supplied by a user. This can lead to a NULL pointer dereference in rds_atomic_free_op() and thus to a system panic.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: Null pointer dereference in rds_atomic_free_op() allowing denial-of-service",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5. This is not currently planned to be addressed in future updates of the product due to its life cycle. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG 2. Future Linux kernel updates for the respective releases may address this issue.\n\nThis issue does not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7, its real-time kernel, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE, as a code with the flaw is not built and shipped with the products listed.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2018-5333"
        },
        {
          "category": "external",
          "summary": "RHBZ#1533891",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1533891"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2018-5333",
          "url": "https://www.cve.org/CVERecord?id=CVE-2018-5333"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5333",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5333"
        }
      ],
      "release_date": "2018-01-03T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2018-03-12T15:03:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, the system must be restarted for the changes to take effect.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2018:0470"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: Null pointer dereference in rds_atomic_free_op() allowing denial-of-service"
    }
  ]
}

RHSA-2018_0470

Vulnerability from csaf_redhat - Published: 2018-03-12 15:03 - Updated: 2024-11-22 11:45

Summary

Red Hat Security Advisory: Red Hat Enterprise MRG Realtime 2.5 security and enhancement update

Severity

Moderate

Notes

CVE-2018-5332

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-787 - Out-of-bounds Write

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2018-5333

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-476 - NULL Pointer Dereference

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix
Unresolved product id: 6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

References

14 references

URL	Category
https://access.redhat.com/errata/RHSA-2018:0470	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=1533890	external
https://bugzilla.redhat.com/show_bug.cgi?id=1533891	external
https://bugzilla.redhat.com/show_bug.cgi?id=1537669	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2018-5332	self
https://bugzilla.redhat.com/show_bug.cgi?id=1533890	external
https://www.cve.org/CVERecord?id=CVE-2018-5332	external
https://nvd.nist.gov/vuln/detail/CVE-2018-5332	external
https://access.redhat.com/security/cve/CVE-2018-5333	self
https://bugzilla.redhat.com/show_bug.cgi?id=1533891	external
https://www.cve.org/CVERecord?id=CVE-2018-5333	external
https://nvd.nist.gov/vuln/detail/CVE-2018-5333	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated Red Hat Enterprise Messaging, Realtime, and Grid (MRG) Realtime packages that fix multiple security issues and add one enhancement are now available for Red Hat Enterprise MRG 2.5.\n\nRed Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat Enterprise MRG is a next-generation IT infrastructure for enterprise computing. MRG offers increased performance, reliability, interoperability, and faster computing for enterprise customers.\n\nSecurity Fix(es):\n\n* kernel: rds_message_alloc_sgs() function doesn\u0027t validate value used during DMA page allocation causes heap out-of-bounds write (CVE-2018-5332, Moderate) \n\n* kernel: Null pointer dereference in rds_atomic_free_op() allows denial-of-service (CVE-2018-5333, Moderate)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nEnhancement(s):\n\n* The kernel-rt packages have been upgraded to version 3.10.0-693.21.1, which provides a number of security and bug fixes over the previous version. (BZ#1537669)\n\nAll Red Hat Enterprise MRG Realtime users are advised to upgrade to these updated packages, which contain backported patches to correct these issues and add this enhancement.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2018:0470",
        "url": "https://access.redhat.com/errata/RHSA-2018:0470"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1533890",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1533890"
      },
      {
        "category": "external",
        "summary": "1533891",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1533891"
      },
      {
        "category": "external",
        "summary": "1537669",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1537669"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0470.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat Enterprise MRG Realtime 2.5 security and enhancement update",
    "tracking": {
      "current_release_date": "2024-11-22T11:45:44+00:00",
      "generator": {
        "date": "2024-11-22T11:45:44+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2018:0470",
      "initial_release_date": "2018-03-12T15:03:01+00:00",
      "revision_history": [
        {
          "date": "2018-03-12T15:03:01+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2018-03-12T15:03:01+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T11:45:44+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat MRG Realtime for RHEL 6 Server v.2",
                "product": {
                  "name": "Red Hat MRG Realtime for RHEL 6 Server v.2",
                  "product_id": "6Server-MRG-Realtime-2",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_mrg:2:server:el6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise MRG for RHEL-6"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla-debuginfo@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-debuginfo@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-vanilla-devel@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-devel@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debuginfo@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-trace-devel@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug-devel@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                "product": {
                  "name": "kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_id": "kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-debug@3.10.0-693.21.1.rt56.607.el6rt?arch=x86_64\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
                "product": {
                  "name": "kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
                  "product_id": "kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-firmware@3.10.0-693.21.1.rt56.607.el6rt?arch=noarch\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
                "product": {
                  "name": "kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
                  "product_id": "kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt-doc@3.10.0-693.21.1.rt56.607.el6rt?arch=noarch\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
                "product": {
                  "name": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
                  "product_id": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/kernel-rt@3.10.0-693.21.1.rt56.607.el6rt?arch=src\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src"
        },
        "product_reference": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch"
        },
        "product_reference": "kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch"
        },
        "product_reference": "kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64 as a component of Red Hat MRG Realtime for RHEL 6 Server v.2",
          "product_id": "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        },
        "product_reference": "kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
        "relates_to_product_reference": "6Server-MRG-Realtime-2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-5332",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2018-01-11T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1533890"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "In the Linux kernel through 4.14.13, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size() function in \u0027net/rds/rdma.c\u0027) and thus to a system panic. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: rds_message_alloc_sgs() function doesn\u0027t validate value used during DMA page allocation causes heap out-of-bounds write",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG 2. Future Linux kernel updates for the respective releases may address this issue.\n\nThis issue does not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 7, its real-time kernel, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE, as a code with the flaw is not built and shipped with the products listed.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2018-5332"
        },
        {
          "category": "external",
          "summary": "RHBZ#1533890",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1533890"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2018-5332",
          "url": "https://www.cve.org/CVERecord?id=CVE-2018-5332"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5332",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5332"
        }
      ],
      "release_date": "2018-01-02T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2018-03-12T15:03:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, the system must be restarted for the changes to take effect.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2018:0470"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: rds_message_alloc_sgs() function doesn\u0027t validate value used during DMA page allocation causes heap out-of-bounds write"
    },
    {
      "cve": "CVE-2018-5333",
      "cwe": {
        "id": "CWE-476",
        "name": "NULL Pointer Dereference"
      },
      "discovery_date": "2018-01-11T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1533891"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "In the Linux kernel through 4.14.13, the rds_cmsg_atomic() function in \u0027net/rds/rdma.c\u0027 mishandles cases where page pinning fails or an invalid address is supplied by a user. This can lead to a NULL pointer dereference in rds_atomic_free_op() and thus to a system panic.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "kernel: Null pointer dereference in rds_atomic_free_op() allowing denial-of-service",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5. This is not currently planned to be addressed in future updates of the product due to its life cycle. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.\n\nThis issue affects the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG 2. Future Linux kernel updates for the respective releases may address this issue.\n\nThis issue does not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 7, its real-time kernel, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE, as a code with the flaw is not built and shipped with the products listed.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
          "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
          "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
          "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2018-5333"
        },
        {
          "category": "external",
          "summary": "RHBZ#1533891",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1533891"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2018-5333",
          "url": "https://www.cve.org/CVERecord?id=CVE-2018-5333"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-5333",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-5333"
        }
      ],
      "release_date": "2018-01-03T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2018-03-12T15:03:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, the system must be restarted for the changes to take effect.",
          "product_ids": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2018:0470"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.src",
            "6Server-MRG-Realtime-2:kernel-rt-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debug-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-debuginfo-common-x86_64-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-doc-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-firmware-1:3.10.0-693.21.1.rt56.607.el6rt.noarch",
            "6Server-MRG-Realtime-2:kernel-rt-trace-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-trace-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-debuginfo-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64",
            "6Server-MRG-Realtime-2:kernel-rt-vanilla-devel-1:3.10.0-693.21.1.rt56.607.el6rt.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "kernel: Null pointer dereference in rds_atomic_free_op() allowing denial-of-service"
    }
  ]
}

SUSE-SU-2018:0383-1

Vulnerability from csaf_suse - Published: 2018-02-07 13:35 - Updated: 2018-02-07 13:35

Summary

Security update for the Linux Kernel

Severity

Important

Notes

Title of the patch: Security update for the Linux Kernel

Description of the patch: The SUSE Linux Enterprise 12 SP3 kernel was updated to 4.4.114 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis (bnc#1068032). The previous fix using CPU Microcode has been complemented by building the Linux Kernel with return trampolines aka 'retpolines'. - CVE-2017-15129: A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel in the function get_net_ns_by_id() in net/core/net_namespace.c did not check for the net::count value after it has found a peer network in netns_ids idr, which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely (bnc#1074839). - CVE-2017-17712: The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel has a race condition in inet->hdrincl that leads to uninitialized stack pointer usage; this allowed a local user to execute code and gain privileges (bnc#1073229). - CVE-2017-17862: kernel/bpf/verifier.c in the Linux kernel ignored unreachable code, even though it would still be processed by JIT compilers. This behavior, also considered an improper branch-pruning logic issue, could possibly be used by local users for denial of service (bnc#1073928). - CVE-2017-17864: kernel/bpf/verifier.c in the Linux kernel mishandled states_equal comparisons between the pointer data type and the UNKNOWN_VALUE data type, which allowed local users to obtain potentially sensitive address information, aka a 'pointer leak (bnc#1073928). - CVE-2017-18017: The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel allowed remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action (bnc#1074488). - CVE-2018-5332: In the Linux kernel the rds_message_alloc_sgs() function did not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c) (bnc#1075621). - CVE-2018-5333: In the Linux kernel the rds_cmsg_atomic function in net/rds/rdma.c mishandled cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference (bnc#1075617). - CVE-2018-1000004: In the Linux kernel a race condition vulnerability existed in the sound system, this can lead to a deadlock and denial of service condition (bnc#1076017). The following non-security bugs were fixed: - 8021q: fix a memory leak for VLAN 0 device (bnc#1012382). - acpi / scan: Prefer devices without _HID/_CID for _ADR matching (bnc#1012382). - af_key: fix buffer overread in parse_exthdrs() (bnc#1012382). - af_key: fix buffer overread in verify_address_len() (bnc#1012382). - afs: Adjust mode bits processing (bnc#1012382). - afs: Connect up the CB.ProbeUuid (bnc#1012382). - afs: Fix afs_kill_pages() (bnc#1012382). - afs: Fix missing put_page() (bnc#1012382). - afs: Fix page leak in afs_write_begin() (bnc#1012382). - afs: Fix the maths in afs_fs_store_data() (bnc#1012382). - afs: Flush outstanding writes when an fd is closed (bnc#1012382). - afs: Migrate vlocation fields to 64-bit (bnc#1012382). - afs: Populate and use client modification time (bnc#1012382). - afs: Populate group ID from vnode status (bnc#1012382). - afs: Prevent callback expiry timer overflow (bnc#1012382). - alpha: fix build failures (bnc#1012382). - alsa: aloop: Fix inconsistent format due to incomplete rule (bsc#1031717). - alsa: aloop: Fix racy hw constraints adjustment (bsc#1031717). - alsa: aloop: Release cable upon open error path (bsc#1031717). - alsa: hda - Add HP ZBook 15u G3 Conexant CX20724 GPIO mute leds (bsc#1031717). - alsa: hda - Add MIC_NO_PRESENCE fixup for 2 HP machines (bsc#1031717). - alsa: hda - Add mute led support for HP EliteBook 840 G3 (bsc#1031717). - alsa: hda - Add mute led support for HP ProBook 440 G4 (bsc#1031717). - alsa: hda - add support for docking station for HP 820 G2 (bsc#1031717). - alsa: hda - add support for docking station for HP 840 G3 (bsc#1031717). - alsa: hda - Apply headphone noise quirk for another Dell XPS 13 variant (bsc#1031717). - alsa: hda - Apply the existing quirk to iMac 14,1 (bsc#1031717). - alsa: hda - change the location for one mic on a Lenovo machine (bsc#1031717). - alsa: hda: Drop useless WARN_ON() (bsc#1031717). - alsa: hda - Fix click noises on Samsung Ativ Book 8 (bsc#1031717). - alsa: hda - fix headset mic detection issue on a Dell machine (bsc#1031717). - alsa: hda - fix headset mic problem for Dell machines with alc274 (bsc#1031717). - alsa: hda - Fix headset microphone detection for ASUS N551 and N751 (bsc#1031717). - alsa: hda - Fix mic regression by ASRock mobo fixup (bsc#1031717). - alsa: hda - Fix missing COEF init for ALC225/295/299 (bsc#1031717). - alsa: hda - Fix surround output pins for ASRock B150M mobo (bsc#1031717). - alsa: hda - On-board speaker fixup on ACER Veriton (bsc#1031717). - alsa: hda/realtek - Add ALC256 HP depop function (bsc#1031717). - alsa: hda/realtek - Add default procedure for suspend and resume state (bsc#1031717). - alsa: hda/realtek - Add support for Acer Aspire E5-475 headset mic (bsc#1031717). - alsa: hda/realtek - Add support for ALC1220 (bsc#1031717). - alsa: hda/realtek - Add support for headset MIC for ALC622 (bsc#1031717). - alsa: hda/realtek - ALC891 headset mode for Dell (bsc#1031717). - alsa: hda/realtek - change the location for one of two front microphones (bsc#1031717). - alsa: hda/realtek - Enable jack detection function for Intel ALC700 (bsc#1031717). - alsa: hda/realtek - Fix ALC275 no sound issue (bsc#1031717). - alsa: hda/realtek - Fix Dell AIO LineOut issue (bsc#1031717). - alsa: hda/realtek - Fix headset and mic on several Asus laptops with ALC256 (bsc#1031717). - alsa: hda/realtek - Fix headset mic and speaker on Asus X441SA/X441UV (bsc#1031717). - alsa: hda/realtek - fix headset mic detection for MSI MS-B120 (bsc#1031717). - alsa: hda/realtek - Fix headset mic on several Asus laptops with ALC255 (bsc#1031717). - alsa: hda/realtek - Fix pincfg for Dell XPS 13 9370 (bsc#1031717). - alsa: hda/realtek - Fix speaker support for Asus AiO ZN270IE (bsc#1031717). - alsa: hda/realtek - Fix typo of pincfg for Dell quirk (bsc#1031717). - alsa: hda/realtek - New codec device ID for ALC1220 (bsc#1031717). - alsa: hda/realtek - New codecs support for ALC215/ALC285/ALC289 (bsc#1031717). - alsa: hda/realtek - New codec support for ALC257 (bsc#1031717). - alsa: hda/realtek - New codec support of ALC1220 (bsc#1031717). - alsa: hda/realtek - No loopback on ALC225/ALC295 codec (bsc#1031717). - alsa: hda/realtek - Remove ALC285 device ID (bsc#1031717). - alsa: hda/realtek - Support Dell headset mode for ALC3271 (bsc#1031717). - alsa: hda/realtek - Support headset mode for ALC234/ALC274/ALC294 (bsc#1031717). - alsa: hda/realtek - There is no loopback mixer in the ALC234/274/294 (bsc#1031717). - alsa: hda/realtek - Update headset mode for ALC225 (bsc#1031717). - alsa: hda/realtek - Update headset mode for ALC298 (bsc#1031717). - alsa: hda - Skip Realtek SKU check for Lenovo machines (bsc#1031717). - alsa: pcm: Abort properly at pending signal in OSS read/write loops (bsc#1031717). - alsa: pcm: Add missing error checks in OSS emulation plugin builder (bsc#1031717). - alsa: pcm: Allow aborting mutex lock at OSS read/write loops (bsc#1031717). - alsa: pcm: prevent UAF in snd_pcm_info (bsc#1031717). - alsa: pcm: Remove incorrect snd_BUG_ON() usages (bsc#1031717). - alsa: pcm: Remove yet superfluous WARN_ON() (bsc#1031717). - alsa: rawmidi: Avoid racy info ioctl via ctl device (bsc#1031717). - alsa: seq: Remove spurious WARN_ON() at timer check (bsc#1031717). - alsa: usb-audio: Add check return value for usb_string() (bsc#1031717). - alsa: usb-audio: Fix out-of-bound error (bsc#1031717). - alsa: usb-audio: Fix the missing ctl name suffix at parsing SU (bsc#1031717). - arc: uaccess: dont use 'l' gcc inline asm constraint modifier (bnc#1012382). - arm64: Add skeleton to harden the branch predictor against aliasing attacks (bsc#1068032). - arm64: Add trace_hardirqs_off annotation in ret_to_user (bsc#1068032). - arm64: Branch predictor hardening for Cavium ThunderX2 (bsc#1068032). - arm64/cpufeature: do not use mutex in bringup path (bsc#1068032). - arm64: cpufeature: Pass capability structure to ->enable callback (bsc#1068032). - arm64: cputype: Add MIDR values for Cavium ThunderX2 CPUs (bsc#1068032). - arm64: cputype: Add missing MIDR values for Cortex-A72 and Cortex-A75 (bsc#1068032). - arm64: debug: remove unused local_dbg_{enable, disable} macros (bsc#1068032). - arm64: Define cputype macros for Falkor CPU (bsc#1068032). - arm64: Disable TTBR0_EL1 during normal kernel execution (bsc#1068032). - arm64: Do not force KPTI for CPUs that are not vulnerable (bsc#1076187). - arm64: do not pull uaccess.h into *.S (bsc#1068032). - arm64: Enable CONFIG_ARM64_SW_TTBR0_PAN (bsc#1068032). - arm64: entry: Add exception trampoline page for exceptions from EL0 (bsc#1068032). - arm64: entry: Add fake CPU feature for unmapping the kernel at EL0 (bsc#1068032). - arm64: entry: Explicitly pass exception level to kernel_ventry macro (bsc#1068032). - arm64: entry: Hook up entry trampoline to exception vectors (bsc#1068032). - arm64: entry: remove pointless SPSR mode check (bsc#1068032). - arm64: entry.S convert el0_sync (bsc#1068032). - arm64: entry.S: convert el1_sync (bsc#1068032). - arm64: entry.S: convert elX_irq (bsc#1068032). - arm64: entry.S: move SError handling into a C function for future expansion (bsc#1068032). - arm64: entry.S: Remove disable_dbg (bsc#1068032). - arm64: erratum: Work around Falkor erratum #E1003 in trampoline code (bsc#1068032). - arm64: explicitly mask all exceptions (bsc#1068032). - arm64: factor out entry stack manipulation (bsc#1068032). - arm64: factor out PAGE_* and CONT_* definitions (bsc#1068032). - arm64: Factor out PAN enabling/disabling into separate uaccess_* macros (bsc#1068032). - arm64: Factor out TTBR0_EL1 post-update workaround into a specific asm macro (bsc#1068032). - arm64: factor work_pending state machine to C (bsc#1068032). - arm64: fpsimd: Prevent registers leaking from dead tasks (bnc#1012382). - arm64: Handle el1 synchronous instruction aborts cleanly (bsc#1068032). - arm64: Handle faults caused by inadvertent user access with PAN enabled (bsc#1068032). - arm64: head.S: get rid of x25 and x26 with 'global' scope (bsc#1068032). - arm64: Implement branch predictor hardening for affected Cortex-A CPUs (bsc#1068032). - arm64: Implement branch predictor hardening for Falkor (bsc#1068032). - arm64: Initialise high_memory global variable earlier (bnc#1012382). - arm64: introduce an order for exceptions (bsc#1068032). - arm64: introduce mov_q macro to move a constant into a 64-bit register (bsc#1068032). - arm64: Introduce uaccess_{disable,enable} functionality based on TTBR0_EL1 (bsc#1068032). - arm64: kaslr: Put kernel vectors address in separate data page (bsc#1068032). - arm64: Kconfig: Add CONFIG_UNMAP_KERNEL_AT_EL0 (bsc#1068032). - arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry (bsc#1068032). - arm64: kill ESR_LNX_EXEC (bsc#1068032). - arm64: kpti: Fix the interaction between ASID switching and software PAN (bsc#1068032). - arm64: kvm: Fix SMCCC handling of unimplemented SMC/HVC calls (bsc#1076232). - arm64: kvm: fix VTTBR_BADDR_MASK BUG_ON off-by-one (bnc#1012382). - arm64: kvm: Make PSCI_VERSION a fast path (bsc#1068032). - arm64: kvm: Use per-CPU vector when BP hardening is enabled (bsc#1068032). - arm64: Mask all exceptions during kernel_exit (bsc#1068032). - arm64: mm: Add arm64_kernel_unmapped_at_el0 helper (bsc#1068032). - arm64: mm: Allocate ASIDs in pairs (bsc#1068032). - arm64: mm: Fix and re-enable ARM64_SW_TTBR0_PAN (bsc#1068032). - arm64: mm: hardcode rodata=true (bsc#1068032). - arm64: mm: Introduce TTBR_ASID_MASK for getting at the ASID in the TTBR (bsc#1068032). - arm64: mm: Invalidate both kernel and user ASIDs when performing TLBI (bsc#1068032). - arm64: mm: Map entry trampoline into trampoline and kernel page tables (bsc#1068032). - arm64: mm: Move ASID from TTBR0 to TTBR1 (bsc#1068032). - arm64: mm: Remove pre_ttbr0_update_workaround for Falkor erratum #E1003 (bsc#1068032). - arm64: mm: Rename post_ttbr0_update_workaround (bsc#1068032). - arm64: mm: Temporarily disable ARM64_SW_TTBR0_PAN (bsc#1068032). - arm64: mm: Use non-global mappings for kernel space (bsc#1068032). - arm64: Move BP hardening to check_and_switch_context (bsc#1068032). - arm64: Move post_ttbr_update_workaround to C code (bsc#1068032). - arm64: Move the async/fiq helpers to explicitly set process context flags (bsc#1068032). - arm64: SW PAN: Point saved ttbr0 at the zero page when switching to init_mm (bsc#1068032). - arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb (bsc#1068032). - arm64: swp emulation: bound LL/SC retries before rescheduling (bsc#1068032). - arm64: sysreg: Fix unprotected macro argmuent in write_sysreg (bsc#1068032). - arm64: Take into account ID_AA64PFR0_EL1.CSV3 (bsc#1068032). - arm64: thunderx2: remove branch predictor hardening References: bsc#1076232 This causes undefined instruction abort on the smc call from guest kernel. Disable until kvm is fixed. - arm64: tls: Avoid unconditional zeroing of tpidrro_el0 for native tasks (bsc#1068032). - arm64: Turn on KPTI only on CPUs that need it (bsc#1076187). - arm64: use alternative auto-nop (bsc#1068032). - arm64: use RET instruction for exiting the trampoline (bsc#1068032). - arm64: xen: Enable user access before a privcmd hvc call (bsc#1068032). - arm/arm64: kvm: Make default HYP mappings non-excutable (bsc#1068032). - arm: avoid faulting on qemu (bnc#1012382). - arm: BUG if jumping to usermode address in kernel mode (bnc#1012382). - arm-ccn: perf: Prevent module unload while PMU is in use (bnc#1012382). - arm: dma-mapping: disallow dma_get_sgtable() for non-kernel managed memory (bnc#1012382). - arm: dts: am335x-evmsk: adjust mmc2 param to allow suspend (bnc#1012382). - arm: dts: kirkwood: fix pin-muxing of MPP7 on OpenBlocks A7 (bnc#1012382). - arm: dts: omap3: logicpd-torpedo-37xx-devkit: Fix MMC1 cd-gpio (bnc#1012382). - arm: dts: ti: fix PCI bus dtc warnings (bnc#1012382). - arm: kprobes: Align stack to 8-bytes in test code (bnc#1012382). - arm: kprobes: Fix the return address of multiple kretprobes (bnc#1012382). - arm: kvm: Fix VTTBR_BADDR_MASK BUG_ON off-by-one (bnc#1012382). - arm: OMAP1: DMA: Correct the number of logical channels (bnc#1012382). - arm: OMAP2+: Fix device node reference counts (bnc#1012382). - arm: OMAP2+: gpmc-onenand: propagate error on initialization failure (bnc#1012382). - arm: OMAP2+: Release device node after it is no longer needed (bnc#1012382). - asm-prototypes: Clear any CPP defines before declaring the functions (git-fixes). - asn.1: check for error from ASN1_OP_END__ACT actions (bnc#1012382). - asn.1: fix out-of-bounds read when parsing indefinite length item (bnc#1012382). - asoc: fsl_ssi: AC'97 ops need regmap, clock and cleaning up on failure (bsc#1031717). - asoc: twl4030: fix child-node lookup (bsc#1031717). - asoc: wm_adsp: Fix validation of firmware and coeff lengths (bsc#1031717). - ath9k: fix tx99 potential info leak (bnc#1012382). - atm: horizon: Fix irq release error (bnc#1012382). - audit: ensure that 'audit=1' actually enables audit for PID 1 (bnc#1012382). - axonram: Fix gendisk handling (bnc#1012382). - backlight: pwm_bl: Fix overflow condition (bnc#1012382). - bcache: add a comment in journal bucket reading (bsc#1076110). - bcache: Avoid nested function definition (bsc#1076110). - bcache: bch_allocator_thread() is not freezable (bsc#1076110). - bcache: bch_writeback_thread() is not freezable (bsc#1076110). - bcache: check return value of register_shrinker (bsc#1076110). - bcache: documentation formatting, edited for clarity, stripe alignment notes (bsc#1076110). - bcache: documentation updates and corrections (bsc#1076110). - bcache: Do not reinvent the wheel but use existing llist API (bsc#1076110). - bcache: do not write back data if reading it failed (bsc#1076110). - bcache: explicitly destroy mutex while exiting (bnc#1012382). - bcache: fix a comments typo in bch_alloc_sectors() (bsc#1076110). - bcache: Fix building error on MIPS (bnc#1012382). - bcache: fix sequential large write IO bypass (bsc#1076110). - bcache: fix wrong cache_misses statistics (bnc#1012382). - bcache: gc does not work when triggering by manual command (bsc#1076110, bsc#1038078). - bcache: implement PI controller for writeback rate (bsc#1076110). - bcache: increase the number of open buckets (bsc#1076110). - bcache: only permit to recovery read error when cache device is clean (bnc#1012382 bsc#1043652). - bcache: partition support: add 16 minors per bcacheN device (bsc#1076110, bsc#1019784). - bcache: rearrange writeback main thread ratelimit (bsc#1076110). - bcache: recover data from backing when data is clean (bnc#1012382 bsc#1043652). - bcache: Remove redundant set_capacity (bsc#1076110). - bcache: remove unused parameter (bsc#1076110). - bcache: rewrite multiple partitions support (bsc#1076110, bsc#1038085). - bcache: safeguard a dangerous addressing in closure_queue (bsc#1076110). - bcache: silence static checker warning (bsc#1076110). - bcache: smooth writeback rate control (bsc#1076110). - bcache.txt: standardize document format (bsc#1076110). - bcache: update bio->bi_opf bypass/writeback REQ_ flag hints (bsc#1076110). - bcache: update bucket_in_use in real time (bsc#1076110). - bcache: Update continue_at() documentation (bsc#1076110). - bcache: use kmalloc to allocate bio in bch_data_verify() (bsc#1076110). - bcache: use llist_for_each_entry_safe() in __closure_wake_up() (bsc#1076110). - bcache: writeback rate clamping: make 32 bit safe (bsc#1076110). - bcache: writeback rate shouldn't artifically clamp (bsc#1076110). - be2net: restore properly promisc mode after queues reconfiguration (bsc#963844 FATE#320192). - block: wake up all tasks blocked in get_request() (bnc#1012382). - bluetooth: btusb: driver to enable the usb-wakeup feature (bnc#1012382). - bnx2x: do not rollback VF MAC/VLAN filters we did not configure (bnc#1012382). - bnx2x: fix possible overrun of VFPF multicast addresses array (bnc#1012382). - bnx2x: prevent crash when accessing PTP with interface down (bnc#1012382). - btrfs: add missing memset while reading compressed inline extents (bnc#1012382). - btrfs: clear space cache inode generation always (bnc#1012382). - btrfs: embed extent_changeset::range_changed to the structure (dependent patch, bsc#1031395). - btrfs: qgroup: Fix qgroup reserved space underflow by only freeing reserved ranges (bsc#1031395). - btrfs: qgroup: Fix qgroup reserved space underflow caused by buffered write and quotas being enabled (bsc#1031395). - btrfs: qgroup: Introduce extent changeset for qgroup reserve functions (dependent patch, bsc#1031395). - btrfs: qgroup: Return actually freed bytes for qgroup release or free data (bsc#1031395). - btrfs: qgroup-test: Fix backport error in qgroup selftest (just to make CONFIG_BTRFS_FS_RUN_SANITY_TESTS pass compile). - btrfs: ulist: make the finalization function public (dependent patch, bsc#1031395). - btrfs: ulist: rename ulist_fini to ulist_release (dependent patch, bsc#1031395). - can: af_can: canfd_rcv(): replace WARN_ONCE by pr_warn_once (bnc#1012382). - can: af_can: can_rcv(): replace WARN_ONCE by pr_warn_once (bnc#1012382). - can: ems_usb: cancel urb on -EPIPE and -EPROTO (bnc#1012382). - can: esd_usb2: cancel urb on -EPIPE and -EPROTO (bnc#1012382). - can: gs_usb: fix return value of the 'set_bittiming' callback (bnc#1012382). - can: kvaser_usb: cancel urb on -EPIPE and -EPROTO (bnc#1012382). - can: kvaser_usb: Fix comparison bug in kvaser_usb_read_bulk_callback() (bnc#1012382). - can: kvaser_usb: free buf in error paths (bnc#1012382). - can: kvaser_usb: ratelimit errors if incomplete messages are received (bnc#1012382). - can: peak: fix potential bug in packet fragmentation (bnc#1012382). - can: ti_hecc: Fix napi poll return value for repoll (bnc#1012382). - can: usb_8dev: cancel urb on -EPIPE and -EPROTO (bnc#1012382). - cdc-acm: apply quirk for card reader (bsc#1060279). - cdrom: factor out common open_for_* code (bsc#1048585). - cdrom: wait for tray to close (bsc#1048585). - ceph: more accurate statfs (bsc#1077068). - clk: imx6: refine hdmi_isfr's parent to make HDMI work on i.MX6 SoCs w/o VPU (bnc#1012382). - clk: mediatek: add the option for determining PLL source clock (bnc#1012382). - clk: tegra: Fix cclk_lp divisor register (bnc#1012382). - config: arm64: enable HARDEN_BRANCH_PREDICTOR - config: arm64: enable UNMAP_KERNEL_AT_EL0 - cpuidle: fix broadcast control when broadcast can not be entered (bnc#1012382). - cpuidle: powernv: Pass correct drv->cpumask for registration (bnc#1012382). - cpuidle: Validate cpu_dev in cpuidle_add_sysfs() (bnc#1012382). - crypto: algapi - fix NULL dereference in crypto_remove_spawns() (bnc#1012382). - crypto: chacha20poly1305 - validate the digest size (bnc#1012382). - crypto: chelsio - select CRYPTO_GF128MUL (bsc#1048325). - crypto: crypto4xx - increase context and scatter ring buffer elements (bnc#1012382). - crypto: deadlock between crypto_alg_sem/rtnl_mutex/genl_mutex (bnc#1012382). - crypto: mcryptd - protect the per-CPU queue with a lock (bnc#1012382). - crypto: n2 - cure use after free (bnc#1012382). - crypto: pcrypt - fix freeing pcrypt instances (bnc#1012382). - crypto: s5p-sss - Fix completing crypto request in IRQ handler (bnc#1012382). - crypto: tcrypt - fix buffer lengths in test_aead_speed() (bnc#1012382). - cxl: Check if vphb exists before iterating over AFU devices (bsc#1066223). - dax: Pass detailed error code from __dax_fault() (bsc#1072484). - dccp: do not restart ccid2_hc_tx_rto_expire() if sk in closed state (bnc#1012382). - delay: add poll_event_interruptible (bsc#1048585). - dlm: fix malfunction of dlm_tool caused by debugfs changes (bsc#1077704). - dmaengine: dmatest: move callback wait queue to thread context (bnc#1012382). - dmaengine: Fix array index out of bounds warning in __get_unmap_pool() (bnc#1012382). - dmaengine: pl330: fix double lock (bnc#1012382). - dmaengine: ti-dma-crossbar: Correct am335x/am43xx mux value type (bnc#1012382). - dm btree: fix serious bug in btree_split_beneath() (bnc#1012382). - dm bufio: fix shrinker scans when (nr_to_scan < retain_target) (bnc#1012382). - dm thin metadata: THIN_MAX_CONCURRENT_LOCKS should be 6 (bnc#1012382). - drivers/firmware: Expose psci_get_version through psci_ops structure (bsc#1068032). - drm/amd/amdgpu: fix console deadlock if late init failed (bnc#1012382). - drm: extra printk() wrapper macros (bnc#1012382). - drm/exynos/decon5433: set STANDALONE_UPDATE_F on output enablement (bnc#1012382). - drm/exynos: gem: Drop NONCONTIG flag for buffers allocated without IOMMU (bnc#1012382). - drm/omap: fix dmabuf mmap for dma_alloc'ed buffers (bnc#1012382). - drm/radeon: fix atombios on big endian (bnc#1012382). - drm/radeon: reinstate oland workaround for sclk (bnc#1012382). - drm/radeon/si: add dpm quirk for Oland (bnc#1012382). - drm/vmwgfx: Potential off by one in vmw_view_add() (bnc#1012382). - dynamic-debug-howto: fix optional/omitted ending line number to be LARGE instead of 0 (bnc#1012382). - edac, i5000, i5400: Fix definition of NRECMEMB register (bnc#1012382). - edac, i5000, i5400: Fix use of MTR_DRAM_WIDTH macro (bnc#1012382). - edac, sb_edac: Fix missing break in switch (bnc#1012382). - eeprom: at24: check at24_read/write arguments (bnc#1012382). - efi/esrt: Cleanup bad memory map log messages (bnc#1012382). - efi: Move some sysfs files to be read-only by root (bnc#1012382). - eventpoll.h: add missing epoll event masks (bnc#1012382). - ext4: fix crash when a directory's i_size is too small (bnc#1012382). - ext4: Fix ENOSPC handling in DAX page fault handle (bsc#1072484). - ext4: fix fdatasync(2) after fallocate(2) operation (bnc#1012382). - fbdev: controlfb: Add missing modes to fix out of bounds access (bnc#1012382). - Fix EX_SIZE. We do not have the patches that shave off parts of the exception data. - Fix mishandling of cases with MSR not being present (writing to MSR even though _state == -1). - Fix return value from ib[rs|pb]_enabled() - Fixup hang when calling 'nvme list' on all paths down (bsc#1070052). - fjes: Fix wrong netdevice feature flags (bnc#1012382). - flow_dissector: properly cap thoff field (bnc#1012382). - fm10k: ensure we process SM mbx when processing VF mbx (bnc#1012382). - fork: clear thread stack upon allocation (bsc#1077560). - fscache: Fix the default for fscache_maybe_release_page() (bnc#1012382). - futex: Prevent overflow by strengthen input validation (bnc#1012382). - gcov: disable for COMPILE_TEST (bnc#1012382). - gfs2: Take inode off order_write list when setting jdata flag (bnc#1012382). - gpio: altera: Use handle_level_irq when configured as a level_high (bnc#1012382). - hid: chicony: Add support for another ASUS Zen AiO keyboard (bnc#1012382). - hid: xinmo: fix for out of range for THT 2P arcade controller (bnc#1012382). - hrtimer: Reset hrtimer cpu base proper on CPU hotplug (bnc#1012382). - hv: kvp: Avoid reading past allocated blocks from KVP file (bnc#1012382). - hwmon: (asus_atk0110) fix uninitialized data access (bnc#1012382). - i40iw: Account for IPv6 header when setting MSS (bsc#1024376 FATE#321249). - i40iw: Allocate a sdbuf per CQP WQE (bsc#1024376 FATE#321249). - i40iw: Cleanup AE processing (bsc#1024376 FATE#321249). - i40iw: Clear CQP Head/Tail during initialization (bsc#1024376 FATE#321249). - i40iw: Correct ARP index mask (bsc#1024376 FATE#321249). - i40iw: Do not allow posting WR after QP is flushed (bsc#1024376 FATE#321249). - i40iw: Do not free sqbuf when event is I40IW_TIMER_TYPE_CLOSE (bsc#1024376 FATE#321249). - i40iw: Do not generate CQE for RTR on QP flush (bsc#1024376 FATE#321249). - i40iw: Do not retransmit MPA request after it is ACKed (bsc#1024376 FATE#321249). - i40iw: Fixes for static checker warnings (bsc#1024376 FATE#321249). - i40iw: Ignore AE source field in AEQE for some AEs (bsc#1024376 FATE#321249). - i40iw: Move cqp_cmd_head init to CQP initialization (bsc#1024376 FATE#321249). - i40iw: Move exception_lan_queue to VSI structure (bsc#1024376 FATE#321249). - i40iw: Move MPA request event for loopback after connect (bsc#1024376 FATE#321249). - i40iw: Notify user of established connection after QP in RTS (bsc#1024376 FATE#321249). - i40iw: Reinitialize IEQ on MTU change (bsc#1024376 FATE#321249). - ib/hfi1: Fix misspelling in comment (bsc#973818, fate#319242). - ib/hfi1: Prevent kernel QP post send hard lockups (bsc#973818 FATE#319242). - ib/ipoib: Fix lockdep issue found on ipoib_ib_dev_heavy_flush (git-fixes). - ib/ipoib: Fix race condition in neigh creation (bsc#1022595 FATE#322350). - ib/ipoib: Grab rtnl lock on heavy flush when calling ndo_open/stop (bnc#1012382). - ib/mlx4: Increase maximal message size under UD QP (bnc#1012382). - ib/mlx5: Assign send CQ and recv CQ of UMR QP (bnc#1012382). - ib/mlx5: Serialize access to the VMA list (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - ibmvnic: Allocate and request vpd in init_resources (bsc#1076872). - ibmvnic: Do not handle RX interrupts when not up (bsc#1075066). - ibmvnic: Fix IP offload control buffer (bsc#1076899). - ibmvnic: Fix IPv6 packet descriptors (bsc#1076899). - ibmvnic: Fix pending MAC address changes (bsc#1075627). - ibmvnic: Modify buffer size and number of queues on failover (bsc#1076872). - ibmvnic: Revert to previous mtu when unsupported value requested (bsc#1076872). - ibmvnic: Wait for device response when changing MAC (bsc#1078681). - ib/rdmavt: restore IRQs on error path in rvt_create_ah() (bsc#973818, fate#319242). - ib/srpt: Disable RDMA access by the initiator (bnc#1012382). - ib/srpt: Fix ACL lookup during login (bsc#1024296 FATE#321265). - ib/uverbs: Fix command checking as part of ib_uverbs_ex_modify_qp() (FATE#321231 FATE#321473 FATE#322153 FATE#322149). - igb: check memory allocation failure (bnc#1012382). - ima: fix hash algorithm initialization (bnc#1012382). - inet: frag: release spinlock before calling icmp_send() (bnc#1012382). - input: 88pm860x-ts - fix child-node lookup (bnc#1012382). - input: elantech - add new icbody type 15 (bnc#1012382). - input: i8042 - add TUXEDO BU1406 (N24_25BU) to the nomux list (bnc#1012382). - input: trackpoint - force 3 buttons if 0 button is reported (bnc#1012382). - input: twl4030-vibra - fix sibling-node lookup (bnc#1012382). - input: twl6040-vibra - fix child-node lookup (bnc#1012382). - input: twl6040-vibra - fix DT node memory management (bnc#1012382). - intel_th: pci: Add Gemini Lake support (bnc#1012382). - iommu/arm-smmu-v3: Do not free page table ops twice (bnc#1012382). - iommu/vt-d: Fix scatterlist offset handling (bnc#1012382). - ip6_gre: remove the incorrect mtu limit for ipgre tap (bsc#1022912 FATE#321246). - ip6_tunnel: disable dst caching if tunnel is dual-stack (bnc#1012382). - ip_gre: remove the incorrect mtu limit for ipgre tap (bsc#1022912 FATE#321246). - ipmi: Stop timers before cleaning up the module (bnc#1012382). - ipv4: Fix use-after-free when flushing FIB tables (bnc#1012382). - ipv4: igmp: guard against silly MTU values (bnc#1012382). - ipv4: Make neigh lookup keys for loopback/point-to-point devices be INADDR_ANY (bnc#1012382). - ipv6: Fix getsockopt() for sockets with default IPV6_AUTOFLOWLABEL (bnc#1012382). - ipv6: fix possible mem leaks in ipv6_make_skb() (bnc#1012382). - ipv6: fix udpv6 sendmsg crash caused by too small MTU (bnc#1012382). - ipv6: ip6_make_skb() needs to clear cork.base.dst (git-fixes). - ipv6: mcast: better catch silly mtu values (bnc#1012382). - ipv6: reorder icmpv6_init() and ip6_mr_init() (bnc#1012382). - ipvlan: fix ipv6 outbound device (bnc#1012382). - ipvlan: remove excessive packet scrubbing (bsc#1070799). - irda: vlsi_ir: fix check for DMA mapping errors (bnc#1012382). - irqchip/crossbar: Fix incorrect type of register size (bnc#1012382). - iscsi_iser: Re-enable 'iser_pi_guard' module parameter (bsc#1062129). - iscsi-target: fix memory leak in lio_target_tiqn_addtpg() (bnc#1012382). - iscsi-target: Make TASK_REASSIGN use proper se_cmd->cmd_kref (bnc#1012382). - isdn: kcapi: avoid uninitialized data (bnc#1012382). - iser-target: Fix possible use-after-free in connection establishment error (FATE#321732). - iw_cxgb4: Only validate the MSN for successful completions (bnc#1012382). - iw_cxgb4: reflect the original WR opcode in drain cqes (bsc#321658 FATE#1005778 bsc#321660 FATE#1005780 bsc#321661 FATE#1005781). - iw_cxgb4: when flushing, complete all wrs in a chain (bsc#321658 FATE#1005778 bsc#321660 FATE#1005780 bsc#321661 FATE#1005781). - ixgbe: fix use of uninitialized padding (bnc#1012382). - jump_label: Invoke jump_label_test() via early_initcall() (bnc#1012382). - kabi fix for new hash_cred function (bsc#1012917). - kabi: Keep KVM stable after enable s390 wire up bpb feature (bsc#1076805). - kABI: protect struct bpf_map (kabi). - kABI: protect struct ipv6_pinfo (kabi). - kABI: protect struct t10_alua_tg_pt_gp (kabi). - kABI: protect struct usbip_device (kabi). - kabi/severities: arm64: ignore cpu capability array - kabi/severities: do not care about stuff_RSB - kaiser: Set _PAGE_NX only if supported (bnc#1012382). - kaiser: Set _PAGE_NX only if supported (bnc#1012382). - kbuild: add '-fno-stack-check' to kernel build options (bnc#1012382). - kbuild: modversions for EXPORT_SYMBOL() for asm (bsc#1074621 bsc#1068032). - kbuild: pkg: use --transform option to prefix paths in tar (bnc#1012382). - kdb: Fix handling of kallsyms_symbol_next() return value (bnc#1012382). - kernel/acct.c: fix the acct->needcheck check in check_free_space() (bnc#1012382). - kernel: make groups_sort calling a responsibility group_info allocators (bnc#1012382). - kernel/signal.c: protect the SIGNAL_UNKILLABLE tasks from !sig_kernel_only() signals (bnc#1012382). - kernel/signal.c: protect the traced SIGNAL_UNKILLABLE tasks from SIGKILL (bnc#1012382). - kernel/signal.c: remove the no longer needed SIGNAL_UNKILLABLE check in complete_signal() (bnc#1012382). - keys: add missing permission check for request_key() destination (bnc#1012382). - kprobes/x86: Disable preemption in ftrace-based jprobes (bnc#1012382). - kpti: Rename to PAGE_TABLE_ISOLATION (bnc#1012382). - kpti: Report when enabled (bnc#1012382). - kvm: Fix stack-out-of-bounds read in write_mmio (bnc#1012382). - kvm: nVMX: reset nested_run_pending if the vCPU is going to be reset (bnc#1012382). - kvm: nVMX: VMCLEAR should not cause the vCPU to shut down (bnc#1012382). - kvm: pci-assign: do not map smm memory slot pages in vt-d page tables (bnc#1012382). - kvm: s390: Enable all facility bits that are known good for passthrough (bsc#1076805). - kvm: s390: wire up bpb feature (bsc#1076805). - kvm: VMX: Fix enable VPID conditions (bnc#1012382). - kvm: VMX: remove I/O port 0x80 bypass on Intel hosts (bnc#1012382). - kvm: vmx: Scrub hardware GPRs at VM-exit (bnc#1012382 bsc#1068032). - kvm: x86: Add memory barrier on vmcs field lookup (bnc#1012382). - kvm: x86: correct async page present tracepoint (bnc#1012382). - kvm: x86: Exit to user-mode on #UD intercept when emulator requires (bnc#1012382). - kvm: X86: Fix load RFLAGS w/o the fixed bit (bnc#1012382). - kvm: x86: fix RSM when PCID is non-zero (bnc#1012382). - kvm: x86: inject exceptions produced by x86_decode_insn (bnc#1012382). - kvm: x86: pvclock: Handle first-time write to pvclock-page contains random junk (bnc#1012382). - l2tp: cleanup l2tp_tunnel_delete calls (bnc#1012382). - lan78xx: Fix failure in USB Full Speed (bnc#1012382). - libata: apply MAX_SEC_1024 to all LITEON EP1 series devices (bnc#1012382). - libata: drop WARN from protocol error in ata_sff_qc_issue() (bnc#1012382). - lib/genalloc.c: make the avail variable an atomic_long_t (bnc#1012382). - macvlan: Only deliver one copy of the frame to the macvlan interface (bnc#1012382). - md: more open-coded offset_in_page() (bsc#1076110). - media: dvb: i2c transfers over usb cannot be done from stack (bnc#1012382). - mfd: cros ec: spi: Do not send first message too soon (bnc#1012382). - mfd: twl4030-audio: Fix sibling-node lookup (bnc#1012382). - mfd: twl6040: Fix child-node lookup (bnc#1012382). - mlxsw: reg: Fix SPVMLR max record count (bnc#1012382). - mlxsw: reg: Fix SPVM max record count (bnc#1012382). - mm: avoid returning VM_FAULT_RETRY from ->page_mkwrite handlers (bnc#1012382). - mmc: core: Do not leave the block driver in a suspended state (bnc#1012382). - mmc: mediatek: Fixed bug where clock frequency could be set wrong (bnc#1012382). - mm: drop unused pmdp_huge_get_and_clear_notify() (bnc#1012382). - mm: Handle 0 flags in _calc_vm_trans() macro (bnc#1012382). - mm/mprotect: add a cond_resched() inside change_pmd_range() (bnc#1077871, bnc#1078002). - mm/vmstat: Make NR_TLB_REMOTE_FLUSH_RECEIVED available even on UP (bnc#1012382). - module: Add retpoline tag to VERMAGIC (bnc#1012382). - module: set __jump_table alignment to 8 (bnc#1012382). - more bio_map_user_iov() leak fixes (bnc#1012382). - mtd: nand: Fix writing mtdoops to nand flash (bnc#1012382). - net: Allow neigh contructor functions ability to modify the primary_key (bnc#1012382). - net/appletalk: Fix kernel memory disclosure (bnc#1012382). - net: bcmgenet: correct MIB access of UniMAC RUNT counters (bnc#1012382). - net: bcmgenet: correct the RBUF_OVFL_CNT and RBUF_ERR_CNT MIB values (bnc#1012382). - net: bcmgenet: power down internal phy if open or resume fails (bnc#1012382). - net: bcmgenet: Power up the internal PHY before probing the MII (bnc#1012382). - net: bcmgenet: reserved phy revisions must be checked first (bnc#1012382). - net: bridge: fix early call to br_stp_change_bridge_id and plug newlink leaks (bnc#1012382). - net: core: fix module type in sock_diag_bind (bnc#1012382). - net: Do not allow negative values for busy_read and busy_poll sysctl interfaces (bnc#1012382). - net: fec: fix multicast filtering hardware setup (bnc#1012382). - netfilter: bridge: honor frag_max_size when refragmenting (bnc#1012382). - netfilter: do not track fragmented packets (bnc#1012382). - netfilter: ipvs: Fix inappropriate output of procfs (bnc#1012382). - netfilter: nfnetlink_queue: fix secctx memory leak (bnc#1012382). - netfilter: nfnetlink_queue: fix timestamp attribute (bsc#1074134). - netfilter: nfnl_cthelper: fix a race when walk the nf_ct_helper_hash table (bnc#1012382). - netfilter: nfnl_cthelper: Fix memory leak (bnc#1012382). - netfilter: nfnl_cthelper: fix runtime expectation policy updates (bnc#1012382). - net: Fix double free and memory corruption in get_net_ns_by_id() (bnc#1012382). - net: igmp: fix source address check for IGMPv3 reports (bnc#1012382). - net: igmp: Use correct source address on IGMPv3 reports (bnc#1012382). - net: initialize msg.msg_flags in recvfrom (bnc#1012382). - net: ipv4: fix for a race condition in raw_sendmsg (bnc#1012382). - netlink: add a start callback for starting a netlink dump (bnc#1012382). - net/mac80211/debugfs.c: prevent build failure with CONFIG_UBSAN=y (bnc#1012382). - net/mlx5: Avoid NULL pointer dereference on steering cleanup (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5: Cleanup IRQs in case of unload failure (bsc#966170 FATE#320225 bsc#966172 FATE#320226). - net/mlx5e: Add refcount to VXLAN structure (bsc#966170 FATE#320225 bsc#966172 FATE#320226). - net/mlx5e: Fix ETS BW check (bsc#966170 FATE#320225 bsc#966172 FATE#320226). - net/mlx5e: Fix features check of IPv6 traffic (bsc#966170 FATE#320225 bsc#966172 FATE#320226). - net/mlx5e: Fix fixpoint divide exception in mlx5e_am_stats_compare (bsc#1015342). - net/mlx5e: Fix possible deadlock of VXLAN lock (bsc#966170 FATE#320225 bsc#966172 FATE#320226). - net/mlx5e: Prevent possible races in VXLAN control flow (bsc#966170 FATE#320225 bsc#966172 FATE#320226). - net/mlx5: Fix error flow in CREATE_QP command (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5: Fix rate limit packet pacing naming and struct (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5: Stay in polling mode when command EQ destroy fails (bsc#966170 FATE#320225 bsc#966172 FATE#320226). - net: mvmdio: disable/unprepare clocks in EPROBE_DEFER case (bnc#1012382). - net: mvneta: clear interface link status on port disable (bnc#1012382). - net: mvneta: eliminate wrong call to handle rx descriptor error (fate#319899). - net: mvneta: use proper rxq_number in loop on rx queues (fate#319899). - net/packet: fix a race in packet_bind() and packet_notifier() (bnc#1012382). - net: phy: at803x: Change error to EINVAL for invalid MAC (bnc#1012382). - net: phy: micrel: ksz9031: reconfigure autoneg after phy autoneg workaround (bnc#1012382). - net: qdisc_pkt_len_init() should be more robust (bnc#1012382). - net: qmi_wwan: add Sierra EM7565 1199:9091 (bnc#1012382). - net: qmi_wwan: Add USB IDs for MDM6600 modem on Motorola Droid 4 (bnc#1012382). - net: reevalulate autoflowlabel setting after sysctl setting (bnc#1012382). - net: Resend IGMP memberships upon peer notification (bnc#1012382). - net: sctp: fix array overrun read on sctp_timer_tbl (bnc#1012382). - net: stmmac: enable EEE in MII, GMII or RGMII only (bnc#1012382). - net: systemport: Pad packet before inserting TSB (bnc#1012382). - net: systemport: Utilize skb_put_padto() (bnc#1012382). - net: tcp: close sock if net namespace is exiting (bnc#1012382). - net: wimax/i2400m: fix NULL-deref at probe (bnc#1012382). - nfsd: auth: Fix gid sorting when rootsquash enabled (bnc#1012382). - nfsd: Fix another OPEN stateid race (bnc#1012382). - nfsd: fix nfsd_minorversion(.., NFSD_AVAIL) (bnc#1012382). - nfsd: fix nfsd_reset_versions for NFSv4 (bnc#1012382). - nfsd: Fix stateid races between OPEN and CLOSE (bnc#1012382). - nfsd: Make init_open_stateid() a bit more whole (bnc#1012382). - nfs: Do not take a reference on fl->fl_file for LOCK operation (bnc#1012382). - nfs: Fix a typo in nfs_rename() (bnc#1012382). - nfs: improve shinking of access cache (bsc#1012917). - nfsv4.1 respect server's max size in CREATE_SESSION (bnc#1012382). - nfsv4: Fix client recovery when server reboots multiple times (bnc#1012382). - nohz: Prevent a timer interrupt storm in tick_nohz_stop_sched_tick() (bnc#1012382). - n_tty: fix EXTPROC vs ICANON interaction with TIOCINQ (aka FIONREAD) (bnc#1012382). - nvme_fc: correct hang in nvme_ns_remove() (bsc#1075811). - nvme_fc: fix rogue admin cmds stalling teardown (bsc#1075811). - nvme-pci: Remove watchdog timer (bsc#1066163). - openrisc: fix issue handling 8 byte get_user calls (bnc#1012382). - packet: fix crash in fanout_demux_rollover() (bnc#1012382). - parisc: Fix alignment of pa_tlb_lock in assembly on 32-bit SMP kernel (bnc#1012382). - parisc: Hide Diva-built-in serial aux and graphics card (bnc#1012382). - partially revert tipc improve link resiliency when rps is activated (bsc#1068038). - pci/AER: Report non-fatal errors only to the affected endpoint (bnc#1012382). - pci: Avoid bus reset if bridge itself is broken (bnc#1012382). - pci: Create SR-IOV virtfn/physfn links before attaching driver (bnc#1012382). - pci: Detach driver before procfs & sysfs teardown on device remove (bnc#1012382). - pci/PME: Handle invalid data when reading Root Status (bnc#1012382). - pci / PM: Force devices to D0 in pci_pm_thaw_noirq() (bnc#1012382). - perf symbols: Fix symbols__fixup_end heuristic for corner cases (bnc#1012382). - perf test attr: Fix ignored test case result (bnc#1012382). - phy: work around 'phys' references to usb-nop-xceiv devices (bnc#1012382). - pinctrl: adi2: Fix Kconfig build problem (bnc#1012382). - pinctrl: st: add irq_request/release_resources callbacks (bnc#1012382). - pipe: avoid round_pipe_size() nr_pages overflow on 32-bit (bnc#1012382). - powerpc/64: Add macros for annotating the destination of rfid/hrfid (bsc#1068032, bsc#1075087). - powerpc/64: Convert fast_exception_return to use RFI_TO_USER/KERNEL (bsc#1068032, bsc#1075087). - powerpc/64: Convert the syscall exit path to use RFI_TO_USER/KERNEL (bsc#1068032, bsc#1075087). - powerpc/64s: Add EX_SIZE definition for paca exception save areas (bsc#1068032, bsc#1075087). - powerpc/64s: Add support for RFI flush of L1-D cache (bsc#1068032, bsc#1075087). - powerpc/64s: Allow control of RFI flush via debugfs (bsc#1068032, bsc#1075087). - powerpc/64s: Convert slb_miss_common to use RFI_TO_USER/KERNEL (bsc#1068032, bsc#1075087). - powerpc/64s: Simple RFI macro conversions (bsc#1068032, bsc#1075087). - powerpc/64s: Support disabling RFI flush with no_rfi_flush and nopti (bsc#1068032, bsc#1075087). - powerpc/64s: Wire up cpu_show_meltdown() (bsc#1068032). - powerpc/asm: Allow including ppc_asm.h in asm files (bsc#1068032, bsc#1075087). - powerpc/ipic: Fix status get and status clear (bnc#1012382). - powerpc/perf: Dereference BHRB entries safely (bsc#1066223). - powerpc/perf/hv-24x7: Fix incorrect comparison in memord (bnc#1012382). - powerpc/powernv: Check device-tree for RFI flush settings (bsc#1068032, bsc#1075087). - powerpc/powernv/cpufreq: Fix the frequency read by /proc/cpuinfo (bnc#1012382). - powerpc/powernv/ioda2: Gracefully fail if too many TCE levels requested (bnc#1012382). - powerpc/pseries: include linux/types.h in asm/hvcall.h (bsc#1068032, bsc#1075087). - powerpc/pseries: Introduce H_GET_CPU_CHARACTERISTICS (bsc#1068032, bsc#1075087). - powerpc/pseries: Query hypervisor for RFI flush settings (bsc#1068032, bsc#1075087). - powerpc/pseries/rfi-flush: Call setup_rfi_flush() after LPM migration (bsc#1068032, bsc#1075087). - powerpc/rfi-flush: Add DEBUG_RFI config option (bsc#1068032, bsc#1075087). - powerpc/rfi-flush: Make setup_rfi_flush() not __init (bsc#1068032, bsc#1075087). - powerpc/rfi-flush: Move RFI flush fields out of the paca (unbreak kABI) (bsc#1068032, bsc#1075087). - powerpc/rfi-flush: Move the logic to avoid a redo into the sysfs code (bsc#1068032, bsc#1075087). - powerpc/rfi-flush: prevent crash when changing flush type to fallback after system boot (bsc#1068032, bsc#1075087). - ppp: Destroy the mutex when cleanup (bnc#1012382). - pppoe: take ->needed_headroom of lower device into account on xmit (bnc#1012382). - pti: unbreak EFI (bsc#1074709). - r8152: fix the list rx_done may be used without initialization (bnc#1012382). - r8152: prevent the driver from transmitting packets with carrier off (bnc#1012382). - r8169: fix memory corruption on retrieval of hardware statistics (bnc#1012382). - raid5: Set R5_Expanded on parity devices as well as data (bnc#1012382). - ravb: Remove Rx overflow log messages (bnc#1012382). - rbd: set max_segments to USHRT_MAX (bnc#1012382). - rdma/cma: Avoid triggering undefined behavior (bnc#1012382). - rdma/i40iw: Remove MSS change support (bsc#1024376 FATE#321249). - rds: Fix NULL pointer dereference in __rds_rdma_map (bnc#1012382). - rds: Heap OOB write in rds_message_alloc_sgs() (bnc#1012382). - rds: null pointer dereference in rds_atomic_free_op (bnc#1012382). - Re-enable fixup detection by CPU type in case hypervisor call fails. - regulator: core: Rely on regulator_dev_release to free constraints (bsc#1074847). - regulator: da9063: Return an error code on probe failure (bsc#1074847). - regulator: pwm: Fix regulator ramp delay for continuous mode (bsc#1074847). - regulator: Try to resolve regulators supplies on registration (bsc#1074847). - Revert 'Bluetooth: btusb: driver to enable the usb-wakeup feature' (bnc#1012382). - Revert 'drm/armada: Fix compile fail' (bnc#1012382). - Revert 'drm/radeon: dont switch vt on suspend' (bnc#1012382). - Revert 'ipsec: Fix aborted xfrm policy dump crash' (kabi). - Revert 'kaiser: vmstat show NR_KAISERTABLE as nr_overhead' (kabi). - Revert 'lib/genalloc.c: make the avail variable an atomic_long_t' (kabi). - Revert 'module: Add retpoline tag to VERMAGIC' (bnc#1012382 kabi). - Revert 'module: Add retpoline tag to VERMAGIC' (kabi). - Revert 'netlink: add a start callback for starting a netlink dump' (kabi). - Revert 'ocfs2: should wait dio before inode lock in ocfs2_setattr()' (bnc#1012382). - Revert 'Re-enable fixup detection by CPU type in case hypervisor call fails.' The firmware update is required for the existing instructions to also do the cache flush. - Revert 's390/kbuild: enable modversions for symbols exported from asm' (bnc#1012382). - Revert 'sched/deadline: Use the revised wakeup rule for suspending constrained dl tasks' (kabi). - Revert 'scsi: libsas: align sata_device's rps_resp on a cacheline' (kabi). - Revert 'spi: SPI_FSL_DSPI should depend on HAS_DMA' (bnc#1012382). - Revert 'userfaultfd: selftest: vm: allow to build in vm/ directory' (bnc#1012382). - Revert 'x86/efi: Build our own page table structures' (bnc#1012382). - Revert 'x86/efi: Hoist page table switching code into efi_call_virt()' (bnc#1012382). - Revert 'x86/mm/pat: Ensure cpa->pfn only contains page frame numbers' (bnc#1012382). - rfi-flush: Make DEBUG_RFI a CONFIG option (bsc#1068032, bsc#1075087). - ring-buffer: Mask out the info bits when returning buffer page length (bnc#1012382). - route: also update fnhe_genid when updating a route cache (bnc#1012382). - route: update fnhe_expires for redirect when the fnhe exists (bnc#1012382). - rtc: cmos: Initialize hpet timer before irq is registered (bsc#1077592). - rtc: pcf8563: fix output clock rate (bnc#1012382). - rtc: pl031: make interrupt optional (bnc#1012382). - rtc: set the alarm to the next expiring timer (bnc#1012382). - s390: always save and restore all registers on context switch (bnc#1012382). - s390/cpuinfo: show facilities as reported by stfle (bnc#1076847, LTC#163740). - s390: fix compat system call table (bnc#1012382). - s390/pci: do not require AIS facility (bnc#1012382). - s390/qeth: no ETH header for outbound AF_IUCV (LTC#156276 bnc#1012382 bnc#1053472). - s390/runtime instrumentation: simplify task exit handling (bnc#1012382). - sch_dsmark: fix invalid skb_cow() usage (bnc#1012382). - sched/deadline: Make sure the replenishment timer fires in the next period (bnc#1012382). - sched/deadline: Throttle a constrained deadline task activated after the deadline (bnc#1012382). - sched/deadline: Use deadline instead of period when calculating overflow (bnc#1012382). - sched/deadline: Use the revised wakeup rule for suspending constrained dl tasks (bnc#1012382). - sched/deadline: Zero out positive runtime after throttling constrained tasks (git-fixes). - sched/rt: Do not pull from current CPU if only one CPU to pull (bnc#1022476). - scsi: bfa: integer overflow in debugfs (bnc#1012382). - scsi: cxgb4i: fix Tx skb leak (bnc#1012382). - scsi: handle ABORTED_COMMAND on Fujitsu ETERNUS (bsc#1069138). - scsi: hpsa: cleanup sas_phy structures in sysfs when unloading (bnc#1012382). - scsi: hpsa: destroy sas transport properties before scsi_host (bnc#1012382). - scsi: libsas: align sata_device's rps_resp on a cacheline (bnc#1012382). - scsi: lpfc: Use after free in lpfc_rq_buf_free() (bsc#1037838). - scsi: mpt3sas: Fix IO error occurs on pulling out a drive from RAID1 volume created on two SATA drive (bnc#1012382). - scsi: sd: change allow_restart to bool in sysfs interface (bnc#1012382). - scsi: sd: change manage_start_stop to bool in sysfs interface (bnc#1012382). - scsi: sg: disable SET_FORCE_LOW_DMA (bnc#1012382). - scsi: sr: wait for the medium to become ready (bsc#1048585). - sctp: do not allow the v4 socket to bind a v4mapped v6 address (bnc#1012382). - sctp: do not free asoc when it is already dead in sctp_sendmsg (bnc#1012382). - sctp: Replace use of sockets_allocated with specified macro (bnc#1012382). - sctp: return error if the asoc has been peeled off in sctp_wait_for_sndbuf (bnc#1012382). - sctp: use the right sk after waking up from wait_buf sleep (bnc#1012382). - selftest/powerpc: Fix false failures for skipped tests (bnc#1012382). - selftests/x86: Add test_vsyscall (bnc#1012382). - selftests/x86/ldt_get: Add a few additional tests for limits (bnc#1012382). - serial: 8250_pci: Add Amazon PCI serial device ID (bnc#1012382). - serial: 8250: Preserve DLD[7:4] for PORT_XR17V35X (bnc#1012382). - series.conf: move core networking (including netfilter) into sorted section - series.conf: whitespace cleanup - Set supported_modules_check 1 (bsc#1072163). - sfc: do not warn on successful change of MAC (bnc#1012382). - sh_eth: fix SH7757 GEther initialization (bnc#1012382). - sh_eth: fix TSU resource handling (bnc#1012382). - sit: update frag_off info (bnc#1012382). - sock: free skb in skb_complete_tx_timestamp on error (bnc#1012382). - sparc64/mm: set fields in deferred pages (bnc#1012382). - spi_ks8995: fix 'BUG: key accdaa28 not in .data!' (bnc#1012382). - spi: sh-msiof: Fix DMA transfer size check (bnc#1012382). - spi: xilinx: Detect stall with Unknown commands (bnc#1012382). - staging: android: ashmem: fix a race condition in ASHMEM_SET_SIZE ioctl (bnc#1012382). - sunrpc: add auth_unix hash_cred() function (bsc#1012917). - sunrpc: add generic_auth hash_cred() function (bsc#1012917). - sunrpc: add hash_cred() function to rpc_authops struct (bsc#1012917). - sunrpc: add RPCSEC_GSS hash_cred() function (bsc#1012917). - sunrpc: Fix rpc_task_begin trace point (bnc#1012382). - sunrpc: replace generic auth_cred hash with auth-specific function (bsc#1012917). - sunrpc: use supplimental groups in auth hash (bsc#1012917). - sunxi-rsb: Include OF based modalias in device uevent (bnc#1012382). - sysfs/cpu: Add vulnerability folder (bnc#1012382). - sysfs/cpu: Fix typos in vulnerability documentation (bnc#1012382). - sysfs: spectre_v2, handle spec_ctrl (bsc#1075994 bsc#1075091). - sysrq : fix Show Regs call trace on ARM (bnc#1012382). - target: Avoid early CMD_T_PRE_EXECUTE failures during ABORT_TASK (bnc#1012382). - target/file: Do not return error for UNMAP if length is zero (bnc#1012382). - target: fix ALUA transition timeout handling (bnc#1012382). - target:fix condition return in core_pr_dump_initiator_port() (bnc#1012382). - target: fix race during implicit transition work flushes (bnc#1012382). - target/iscsi: Fix a race condition in iscsit_add_reject_from_cmd() (bnc#1012382). - target: Use system workqueue for ALUA transitions (bnc#1012382). - tcp: correct memory barrier usage in tcp_check_space() (bnc#1012382). - tcp: fix under-evaluated ssthresh in TCP Vegas (bnc#1012382). - tcp md5sig: Use skb's saddr when replying to an incoming segment (bnc#1012382). - tcp: __tcp_hdrlen() helper (bnc#1012382). - tg3: Fix rx hang on MTU change with 5717/5719 (bnc#1012382). - thermal/drivers/step_wise: Fix temperature regulation misbehavior (bnc#1012382). - thermal: hisilicon: Handle return value of clk_prepare_enable (bnc#1012382). - tipc: fix cleanup at module unload (bnc#1012382). - tipc: fix memory leak in tipc_accept_from_sock() (bnc#1012382). - tipc: improve link resiliency when rps is activated (bsc#1068038). - tracing: Allocate mask_str buffer dynamically (bnc#1012382). - tracing: Fix converting enum's from the map in trace_event_eval_update() (bnc#1012382). - tracing: Fix crash when it fails to alloc ring buffer (bnc#1012382). - tracing: Fix possible double free on failure of allocating trace buffer (bnc#1012382). - tracing: Remove extra zeroing out of the ring buffer page (bnc#1012382). - tty fix oops when rmmod 8250 (bnc#1012382). - uas: Always apply US_FL_NO_ATA_1X quirk to Seagate devices (bnc#1012382). - uas: ignore UAS for Norelsys NS1068(X) chips (bnc#1012382). - udf: Avoid overflow when session starts at large offset (bnc#1012382). - um: link vmlinux with -no-pie (bnc#1012382). - usb: Add device quirk for Logitech HD Pro Webcam C925e (bnc#1012382). - usb: add RESET_RESUME for ELSA MicroLink 56K (bnc#1012382). - usb: core: Add type-specific length check of BOS descriptors (bnc#1012382). - usb: core: prevent malicious bNumInterfaces overflow (bnc#1012382). - usb: devio: Prevent integer overflow in proc_do_submiturb() (bnc#1012382). - usb: Fix off by one in type-specific length check of BOS SSP capability (git-fixes). - usb: fix usbmon BUG trigger (bnc#1012382). - usb: gadget: configs: plug memory leak (bnc#1012382). - usb: gadget: ffs: Forbid usb_ep_alloc_request from sleeping (bnc#1012382). - usb: gadgetfs: Fix a potential memory leak in 'dev_config()' (bnc#1012382). - usb: gadget: f_uvc: Sanity check wMaxPacketSize for SuperSpeed (bnc#1012382). - usb: gadget: udc: remove pointer dereference after free (bnc#1012382). - usb: hub: Cycle HUB power when initialization fails (bnc#1012382). - usb: Increase usbfs transfer limit (bnc#1012382). - usbip: Fix implicit fallthrough warning (bnc#1012382). - usbip: Fix potential format overflow in userspace tools (bnc#1012382). - usbip: fix stub_rx: get_pipe() to validate endpoint number (bnc#1012382). - usbip: fix stub_rx: harden CMD_SUBMIT path to handle malicious input (bnc#1012382). - usbip: fix stub_send_ret_submit() vulnerability to null transfer_buffer (bnc#1012382). - usbip: fix usbip bind writing random string after command in match_busid (bnc#1012382). - usbip: prevent leaking socket pointer address in messages (bnc#1012382). - usbip: prevent vhci_hcd driver from leaking a socket pointer address (bnc#1012382). - usbip: remove kernel addresses from usb device and urb debug msgs (bnc#1012382). - usbip: stub: stop printing kernel pointer addresses in messages (bnc#1012382). - usbip: vhci: stop printing kernel pointer addresses in messages (bnc#1012382). - usb: misc: usb3503: make sure reset is low for at least 100us (bnc#1012382). - usb: musb: da8xx: fix babble condition handling (bnc#1012382). - usb: phy: isp1301: Add OF device ID table (bnc#1012382). - usb: phy: isp1301: Fix build warning when CONFIG_OF is disabled (git-fixes). - usb: phy: tahvo: fix error handling in tahvo_usb_probe() (bnc#1012382). - usb: quirks: Add no-lpm quirk for KY-688 USB 3.1 Type-C Hub (bnc#1012382). - usb: serial: cp210x: add IDs for LifeScan OneTouch Verio IQ (bnc#1012382). - usb: serial: cp210x: add new device ID ELV ALC 8xxx (bnc#1012382). - usb: serial: ftdi_sio: add id for Airbus DS P8GR (bnc#1012382). - usb: serial: option: adding support for YUGA CLM920-NC5 (bnc#1012382). - usb: serial: option: add Quectel BG96 id (bnc#1012382). - usb: serial: option: add support for Telit ME910 PID 0x1101 (bnc#1012382). - usb: serial: qcserial: add Sierra Wireless EM7565 (bnc#1012382). - usb: uas and storage: Add US_FL_BROKEN_FUA for another JMicron JMS567 ID (bnc#1012382). - usb: usbfs: Filter flags passed in from user space (bnc#1012382). - usb: usbip: Fix possible deadlocks reported by lockdep (bnc#1012382). - usb: xhci: Add XHCI_TRUST_TX_LENGTH for Renesas uPD720201 (bnc#1012382). - usb: xhci: fix panic in xhci_free_virt_devices_depth_first (bnc#1012382). - userfaultfd: selftest: vm: allow to build in vm/ directory (bnc#1012382). - userfaultfd: shmem: __do_fault requires VM_FAULT_NOPAGE (bnc#1012382). - video: fbdev: au1200fb: Release some resources if a memory allocation fails (bnc#1012382). - video: fbdev: au1200fb: Return an error code if a memory allocation fails (bnc#1012382). - virtio: release virtio index when fail to device_register (bnc#1012382). - vmxnet3: repair memory leak (bnc#1012382). - vsyscall: Fix permissions for emulate mode with KAISER/PTI (bnc#1012382). - vt6655: Fix a possible sleep-in-atomic bug in vt6655_suspend (bnc#1012382). - vti6: Do not report path MTU below IPV6_MIN_MTU (bnc#1012382). - vti6: fix device register to report IFLA_INFO_KIND (bnc#1012382). - workqueue: trigger WARN if queue_delayed_work() is called with NULL @wq (bnc#1012382). - writeback: fix memory leak in wb_queue_work() (bnc#1012382). - x.509: fix buffer overflow detection in sprint_oid() (bsc#1075078). - x509: fix printing uninitialized stack memory when OID is empty (bsc#1075078). - x.509: reject invalid BIT STRING for subjectPublicKey (bnc#1012382). - x86/acpi: Handle SCI interrupts above legacy space gracefully (bsc#1068984). - x86/acpi: Reduce code duplication in mp_override_legacy_irq() (bsc#1068984). - x86/alternatives: Add missing '\n' at end of ALTERNATIVE inline asm (bnc#1012382). - x86/alternatives: Fix optimize_nops() checking (bnc#1012382). - x86/apic/vector: Fix off by one in error path (bnc#1012382). - x86/asm/32: Make sync_core() handle missing CPUID on all 32-bit kernels (bnc#1012382). - x86/boot: Fix early command-line parsing when matching at end (bsc#1068032). - x86/cpu: Factor out application of forced CPU caps (bnc#1012382). - x86/cpufeatures: Add X86_BUG_CPU_INSECURE (bnc#1012382). - x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] (bnc#1012382). - x86/cpufeatures: Make CPU bugs sticky (bnc#1012382). - x86/cpu: Implement CPU vulnerabilites sysfs functions (bnc#1012382). - x86/cpu: Merge bugs.c and bugs_64.c (bnc#1012382). - x86/cpu: Rename Merrifield2 to Moorefield (bsc#985025). - x86/cpu: Rename 'WESTMERE2' family to 'NEHALEM_G' (bsc#985025). - x86/cpu, x86/pti: Do not enable PTI on AMD processors (bnc#1012382). - x86/Documentation: Add PTI description (bnc#1012382). - x86/efi-bgrt: Replace early_memremap() with memremap() (bnc#1012382). - x86/efi: Build our own page table structures (fate#320512). - x86/efi: Hoist page table switching code into efi_call_virt() (fate#320512). - x86/entry: Use SYSCALL_DEFINE() macros for sys_modify_ldt() (bnc#1012382). - x86/hpet: Prevent might sleep splat on resume (bnc#1012382). - x86/kasan: Clear kasan_zero_page after TLB flush (bnc#1012382). - x86/kasan: Write protect kasan zero shadow (bnc#1012382). - x86/microcode/intel: Extend BDW late-loading further with LLC size check (bnc#1012382). - x86/microcode/intel: Extend BDW late-loading with a revision check (bnc#1012382). - x86/mm/32: Move setup_clear_cpu_cap(X86_FEATURE_PCID) earlier (git-fixes). - x86/mm: Disable PCID on 32-bit kernels (bnc#1012382). - x86/mm/pat: Ensure cpa->pfn only contains page frame numbers (fate#320588). - x86/PCI: Make broadcom_postcore_init() check acpi_disabled (bnc#1012382). - x86/pti: Document fix wrong index (bnc#1012382). - x86/pti/efi: broken conversion from efi to kernel page table (bnc#1012382). - x86/pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN (bnc#1012382). - x86/retpolines/spec_ctrl: disable IBRS on !SKL if retpolines are active (bsc#1068032). - x86/smpboot: Remove stale TLB flush invocations (bnc#1012382). - x86/spectre_v2: fix ordering in IBRS initialization (bsc#1075994 bsc#1075091). - x86/spectre_v2: nospectre_v2 means nospec too (bsc#1075994 bsc#1075091). - x86/tlb: Drop the _GPL from the cpu_tlbstate export (bnc#1012382). - x86/vm86/32: Switch to flush_tlb_mm_range() in mark_screen_rdonly() (bnc#1012382). - xen-netfront: avoid crashing on resume after a failure in talk_to_netback() (bnc#1012382). - xen-netfront: Improve error handling during initialization (bnc#1012382). - xfrm: Copy policy family in clone_policy (bnc#1012382). - xfs: add configurable error support to metadata buffers (bsc#1068569). - xfs: add configuration handlers for specific errors (bsc#1068569). - xfs: add configuration of error failure speed (bsc#1068569). - xfs: add 'fail at unmount' error handling configuration (bsc#1068569). - xfs: Add infrastructure needed for error propagation during buffer IO failure (bsc#1068569). - xfs: address kabi for xfs buffer retry infrastructure (kabi). - xfs: configurable error behavior via sysfs (bsc#1068569). - xfs: fix incorrect extent state in xfs_bmap_add_extent_unwritten_real (bnc#1012382). - xfs: fix log block underflow during recovery cycle verification (bnc#1012382). - xfs: fix up inode32/64 (re)mount handling (bsc#1069160). - xfs: introduce metadata IO error class (bsc#1068569). - xfs: introduce table-based init for error behaviors (bsc#1068569). - xfs: Properly retry failed inode items in case of error during buffer writeback (bsc#1068569). - xfs: remove xfs_trans_ail_delete_bulk (bsc#1068569). - xhci: Do not add a virt_dev to the devs array before it's fully allocated (bnc#1012382). - xhci: Fix ring leak in failure path of xhci_alloc_virt_device() (bnc#1012382). - xhci: plat: Register shutdown for xhci_plat (bnc#1012382). - zram: set physical queue limits to avoid array out of bounds accesses (bnc#1012382). - x86/microcode/intel: Fix BDW late-loading revision check (bnc#1012382).

Patchnames: SUSE-CAASP-ALL-2018-271,SUSE-SLE-DESKTOP-12-SP3-2018-271,SUSE-SLE-HA-12-SP3-2018-271,SUSE-SLE-Live-Patching-12-SP3-2018-271,SUSE-SLE-SDK-12-SP3-2018-271,SUSE-SLE-SERVER-12-SP3-2018-271,SUSE-SLE-WE-12-SP3-2018-271

CVE-2017-15129

6.1 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 67 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17712

8 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H

Affected products

Recommended 67 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-17862

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 67 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17864

3.3 (Low)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 67 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-18017

5.4 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 67 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5715

7.1 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 67 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-1000004

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 67 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-5332

3.6 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 67 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-5333

2.9 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 67 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64	—	Vendor Fix

Threats

Impact low

References

145 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1005778	self
https://bugzilla.suse.com/1005780	self
https://bugzilla.suse.com/1005781	self
https://bugzilla.suse.com/1012382	self
https://bugzilla.suse.com/1012917	self
https://bugzilla.suse.com/1015342	self
https://bugzilla.suse.com/1015343	self
https://bugzilla.suse.com/1019784	self
https://bugzilla.suse.com/1022476	self
https://bugzilla.suse.com/1022595	self
https://bugzilla.suse.com/1022912	self
https://bugzilla.suse.com/1024296	self
https://bugzilla.suse.com/1024376	self
https://bugzilla.suse.com/1031395	self
https://bugzilla.suse.com/1031492	self
https://bugzilla.suse.com/1031717	self
https://bugzilla.suse.com/1037838	self
https://bugzilla.suse.com/1038078	self
https://bugzilla.suse.com/1038085	self
https://bugzilla.suse.com/1040182	self
https://bugzilla.suse.com/1043652	self
https://bugzilla.suse.com/1048325	self
https://bugzilla.suse.com/1048585	self
https://bugzilla.suse.com/1053472	self
https://bugzilla.suse.com/1060279	self
https://bugzilla.suse.com/1062129	self
https://bugzilla.suse.com/1066163	self
https://bugzilla.suse.com/1066223	self
https://bugzilla.suse.com/1068032	self
https://bugzilla.suse.com/1068038	self
https://bugzilla.suse.com/1068569	self
https://bugzilla.suse.com/1068984	self
https://bugzilla.suse.com/1069138	self
https://bugzilla.suse.com/1069160	self
https://bugzilla.suse.com/1070052	self
https://bugzilla.suse.com/1070799	self
https://bugzilla.suse.com/1072163	self
https://bugzilla.suse.com/1072484	self
https://bugzilla.suse.com/1073229	self
https://bugzilla.suse.com/1073928	self
https://bugzilla.suse.com/1074134	self
https://bugzilla.suse.com/1074488	self
https://bugzilla.suse.com/1074621	self
https://bugzilla.suse.com/1074709	self
https://bugzilla.suse.com/1074839	self
https://bugzilla.suse.com/1074847	self
https://bugzilla.suse.com/1075066	self
https://bugzilla.suse.com/1075078	self
https://bugzilla.suse.com/1075087	self
https://bugzilla.suse.com/1075091	self
https://bugzilla.suse.com/1075397	self
https://bugzilla.suse.com/1075428	self
https://bugzilla.suse.com/1075617	self
https://bugzilla.suse.com/1075621	self
https://bugzilla.suse.com/1075627	self
https://bugzilla.suse.com/1075811	self
https://bugzilla.suse.com/1075994	self
https://bugzilla.suse.com/1076017	self
https://bugzilla.suse.com/1076110	self
https://bugzilla.suse.com/1076187	self
https://bugzilla.suse.com/1076232	self
https://bugzilla.suse.com/1076805	self
https://bugzilla.suse.com/1076847	self
https://bugzilla.suse.com/1076872	self
https://bugzilla.suse.com/1076899	self
https://bugzilla.suse.com/1077068	self
https://bugzilla.suse.com/1077560	self
https://bugzilla.suse.com/1077592	self
https://bugzilla.suse.com/1077704	self
https://bugzilla.suse.com/1077871	self
https://bugzilla.suse.com/1078002	self
https://bugzilla.suse.com/1078681	self
https://bugzilla.suse.com/963844	self
https://bugzilla.suse.com/966170	self
https://bugzilla.suse.com/966172	self
https://bugzilla.suse.com/973818	self
https://bugzilla.suse.com/985025	self
https://www.suse.com/security/cve/CVE-2017-15129/	self
https://www.suse.com/security/cve/CVE-2017-17712/	self
https://www.suse.com/security/cve/CVE-2017-17862/	self
https://www.suse.com/security/cve/CVE-2017-17864/	self
https://www.suse.com/security/cve/CVE-2017-18017/	self
https://www.suse.com/security/cve/CVE-2017-5715/	self
https://www.suse.com/security/cve/CVE-2018-1000004/	self
https://www.suse.com/security/cve/CVE-2018-5332/	self
https://www.suse.com/security/cve/CVE-2018-5333/	self
https://www.suse.com/security/cve/CVE-2017-15129	external
https://bugzilla.suse.com/1074839	external
https://www.suse.com/security/cve/CVE-2017-17712	external
https://bugzilla.suse.com/1073229	external
https://bugzilla.suse.com/1073230	external
https://www.suse.com/security/cve/CVE-2017-17862	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17864	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-18017	external
https://bugzilla.suse.com/1074488	external
https://bugzilla.suse.com/1080255	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1115893	external
https://bugzilla.suse.com/971126	external
https://www.suse.com/security/cve/CVE-2017-5715	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1074741	external
https://bugzilla.suse.com/1074919	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075007	external
https://bugzilla.suse.com/1075262	external
https://bugzilla.suse.com/1075419	external
https://bugzilla.suse.com/1076115	external
https://bugzilla.suse.com/1076372	external
https://bugzilla.suse.com/1076606	external
https://bugzilla.suse.com/1078353	external
https://bugzilla.suse.com/1080039	external
https://bugzilla.suse.com/1087887	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1088147	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1095735	external
https://bugzilla.suse.com/1102517	external
https://bugzilla.suse.com/1105108	external
https://bugzilla.suse.com/1126516	external
https://bugzilla.suse.com/1173489	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201457	external
https://bugzilla.suse.com/1201877	external
https://bugzilla.suse.com/1203236	external
https://www.suse.com/security/cve/CVE-2018-1000004	external
https://bugzilla.suse.com/1076017	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2018-5332	external
https://bugzilla.suse.com/1075621	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-5333	external
https://bugzilla.suse.com/1075617	external
https://bugzilla.suse.com/1091815	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\n\nThe SUSE Linux Enterprise 12 SP3 kernel was updated to 4.4.114 to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis (bnc#1068032).\n\n  The previous fix using CPU Microcode has been complemented by building the Linux Kernel with return trampolines aka \u0027retpolines\u0027.\n\n- CVE-2017-15129: A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel in the function get_net_ns_by_id() in net/core/net_namespace.c did not check for the net::count value after it has found a peer network in netns_ids idr, which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely (bnc#1074839).\n- CVE-2017-17712: The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allowed a local user to execute code and gain privileges (bnc#1073229).\n- CVE-2017-17862: kernel/bpf/verifier.c in the Linux kernel ignored unreachable code, even though it would still be processed by JIT compilers. This behavior, also considered an improper branch-pruning logic issue, could possibly be used by local users for denial of service (bnc#1073928).\n- CVE-2017-17864: kernel/bpf/verifier.c in the Linux kernel mishandled states_equal comparisons between the pointer data type and the UNKNOWN_VALUE data type, which allowed local users to obtain potentially sensitive address information, aka a \u0027pointer leak (bnc#1073928).\n- CVE-2017-18017: The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel allowed remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action (bnc#1074488).\n- CVE-2018-5332: In the Linux kernel the rds_message_alloc_sgs() function did not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c) (bnc#1075621).\n- CVE-2018-5333: In the Linux kernel the rds_cmsg_atomic function in net/rds/rdma.c mishandled cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference (bnc#1075617).\n- CVE-2018-1000004: In the Linux kernel a race condition vulnerability existed in the sound system, this can lead to a deadlock and denial of service condition (bnc#1076017).\n\nThe following non-security bugs were fixed:\n\n- 8021q: fix a memory leak for VLAN 0 device (bnc#1012382).\n- acpi / scan: Prefer devices without _HID/_CID for _ADR matching (bnc#1012382).\n- af_key: fix buffer overread in parse_exthdrs() (bnc#1012382).\n- af_key: fix buffer overread in verify_address_len() (bnc#1012382).\n- afs: Adjust mode bits processing (bnc#1012382).\n- afs: Connect up the CB.ProbeUuid (bnc#1012382).\n- afs: Fix afs_kill_pages() (bnc#1012382).\n- afs: Fix missing put_page() (bnc#1012382).\n- afs: Fix page leak in afs_write_begin() (bnc#1012382).\n- afs: Fix the maths in afs_fs_store_data() (bnc#1012382).\n- afs: Flush outstanding writes when an fd is closed (bnc#1012382).\n- afs: Migrate vlocation fields to 64-bit (bnc#1012382).\n- afs: Populate and use client modification time (bnc#1012382).\n- afs: Populate group ID from vnode status (bnc#1012382).\n- afs: Prevent callback expiry timer overflow (bnc#1012382).\n- alpha: fix build failures (bnc#1012382).\n- alsa: aloop: Fix inconsistent format due to incomplete rule (bsc#1031717).\n- alsa: aloop: Fix racy hw constraints adjustment (bsc#1031717).\n- alsa: aloop: Release cable upon open error path (bsc#1031717).\n- alsa: hda - Add HP ZBook 15u G3 Conexant CX20724 GPIO mute leds (bsc#1031717).\n- alsa: hda - Add MIC_NO_PRESENCE fixup for 2 HP machines (bsc#1031717).\n- alsa: hda - Add mute led support for HP EliteBook 840 G3 (bsc#1031717).\n- alsa: hda - Add mute led support for HP ProBook 440 G4 (bsc#1031717).\n- alsa: hda - add support for docking station for HP 820 G2 (bsc#1031717).\n- alsa: hda - add support for docking station for HP 840 G3 (bsc#1031717).\n- alsa: hda - Apply headphone noise quirk for another Dell XPS 13 variant (bsc#1031717).\n- alsa: hda - Apply the existing quirk to iMac 14,1 (bsc#1031717).\n- alsa: hda - change the location for one mic on a Lenovo machine (bsc#1031717).\n- alsa: hda: Drop useless WARN_ON() (bsc#1031717).\n- alsa: hda - Fix click noises on Samsung Ativ Book 8 (bsc#1031717).\n- alsa: hda - fix headset mic detection issue on a Dell machine (bsc#1031717).\n- alsa: hda - fix headset mic problem for Dell machines with alc274 (bsc#1031717).\n- alsa: hda - Fix headset microphone detection for ASUS N551 and N751 (bsc#1031717).\n- alsa: hda - Fix mic regression by ASRock mobo fixup (bsc#1031717).\n- alsa: hda - Fix missing COEF init for ALC225/295/299 (bsc#1031717).\n- alsa: hda - Fix surround output pins for ASRock B150M mobo (bsc#1031717).\n- alsa: hda - On-board speaker fixup on ACER Veriton (bsc#1031717).\n- alsa: hda/realtek - Add ALC256 HP depop function (bsc#1031717).\n- alsa: hda/realtek - Add default procedure for suspend and resume state (bsc#1031717).\n- alsa: hda/realtek - Add support for Acer Aspire E5-475 headset mic (bsc#1031717).\n- alsa: hda/realtek - Add support for ALC1220 (bsc#1031717).\n- alsa: hda/realtek - Add support for headset MIC for ALC622 (bsc#1031717).\n- alsa: hda/realtek - ALC891 headset mode for Dell (bsc#1031717).\n- alsa: hda/realtek - change the location for one of two front microphones (bsc#1031717).\n- alsa: hda/realtek - Enable jack detection function for Intel ALC700 (bsc#1031717).\n- alsa: hda/realtek - Fix ALC275 no sound issue (bsc#1031717).\n- alsa: hda/realtek - Fix Dell AIO LineOut issue (bsc#1031717).\n- alsa: hda/realtek - Fix headset and mic on several Asus laptops with ALC256 (bsc#1031717).\n- alsa: hda/realtek - Fix headset mic and speaker on Asus X441SA/X441UV (bsc#1031717).\n- alsa: hda/realtek - fix headset mic detection for MSI MS-B120 (bsc#1031717).\n- alsa: hda/realtek - Fix headset mic on several Asus laptops with ALC255 (bsc#1031717).\n- alsa: hda/realtek - Fix pincfg for Dell XPS 13 9370 (bsc#1031717).\n- alsa: hda/realtek - Fix speaker support for Asus AiO ZN270IE (bsc#1031717).\n- alsa: hda/realtek - Fix typo of pincfg for Dell quirk (bsc#1031717).\n- alsa: hda/realtek - New codec device ID for ALC1220 (bsc#1031717).\n- alsa: hda/realtek - New codecs support for ALC215/ALC285/ALC289 (bsc#1031717).\n- alsa: hda/realtek - New codec support for ALC257 (bsc#1031717).\n- alsa: hda/realtek - New codec support of ALC1220 (bsc#1031717).\n- alsa: hda/realtek - No loopback on ALC225/ALC295 codec (bsc#1031717).\n- alsa: hda/realtek - Remove ALC285 device ID (bsc#1031717).\n- alsa: hda/realtek - Support Dell headset mode for ALC3271 (bsc#1031717).\n- alsa: hda/realtek - Support headset mode for ALC234/ALC274/ALC294 (bsc#1031717).\n- alsa: hda/realtek - There is no loopback mixer in the ALC234/274/294 (bsc#1031717).\n- alsa: hda/realtek - Update headset mode for ALC225 (bsc#1031717).\n- alsa: hda/realtek - Update headset mode for ALC298 (bsc#1031717).\n- alsa: hda - Skip Realtek SKU check for Lenovo machines (bsc#1031717).\n- alsa: pcm: Abort properly at pending signal in OSS read/write loops (bsc#1031717).\n- alsa: pcm: Add missing error checks in OSS emulation plugin builder (bsc#1031717).\n- alsa: pcm: Allow aborting mutex lock at OSS read/write loops (bsc#1031717).\n- alsa: pcm: prevent UAF in snd_pcm_info (bsc#1031717).\n- alsa: pcm: Remove incorrect snd_BUG_ON() usages (bsc#1031717).\n- alsa: pcm: Remove yet superfluous WARN_ON() (bsc#1031717).\n- alsa: rawmidi: Avoid racy info ioctl via ctl device (bsc#1031717).\n- alsa: seq: Remove spurious WARN_ON() at timer check (bsc#1031717).\n- alsa: usb-audio: Add check return value for usb_string() (bsc#1031717).\n- alsa: usb-audio: Fix out-of-bound error (bsc#1031717).\n- alsa: usb-audio: Fix the missing ctl name suffix at parsing SU (bsc#1031717).\n- arc: uaccess: dont use \u0027l\u0027 gcc inline asm constraint modifier (bnc#1012382).\n- arm64: Add skeleton to harden the branch predictor against aliasing attacks (bsc#1068032).\n- arm64: Add trace_hardirqs_off annotation in ret_to_user (bsc#1068032).\n- arm64: Branch predictor hardening for Cavium ThunderX2 (bsc#1068032).\n- arm64/cpufeature: do not use mutex in bringup path (bsc#1068032).\n- arm64: cpufeature: Pass capability structure to -\u003eenable callback (bsc#1068032).\n- arm64: cputype: Add MIDR values for Cavium ThunderX2 CPUs (bsc#1068032).\n- arm64: cputype: Add missing MIDR values for Cortex-A72 and Cortex-A75 (bsc#1068032).\n- arm64: debug: remove unused local_dbg_{enable, disable} macros (bsc#1068032).\n- arm64: Define cputype macros for Falkor CPU (bsc#1068032).\n- arm64: Disable TTBR0_EL1 during normal kernel execution (bsc#1068032).\n- arm64: Do not force KPTI for CPUs that are not vulnerable (bsc#1076187).\n- arm64: do not pull uaccess.h into *.S (bsc#1068032).\n- arm64: Enable CONFIG_ARM64_SW_TTBR0_PAN (bsc#1068032).\n- arm64: entry: Add exception trampoline page for exceptions from EL0 (bsc#1068032).\n- arm64: entry: Add fake CPU feature for unmapping the kernel at EL0 (bsc#1068032).\n- arm64: entry: Explicitly pass exception level to kernel_ventry macro (bsc#1068032).\n- arm64: entry: Hook up entry trampoline to exception vectors (bsc#1068032).\n- arm64: entry: remove pointless SPSR mode check (bsc#1068032).\n- arm64: entry.S convert el0_sync (bsc#1068032).\n- arm64: entry.S: convert el1_sync (bsc#1068032).\n- arm64: entry.S: convert elX_irq (bsc#1068032).\n- arm64: entry.S: move SError handling into a C function for future expansion (bsc#1068032).\n- arm64: entry.S: Remove disable_dbg (bsc#1068032).\n- arm64: erratum: Work around Falkor erratum #E1003 in trampoline code (bsc#1068032).\n- arm64: explicitly mask all exceptions (bsc#1068032).\n- arm64: factor out entry stack manipulation (bsc#1068032).\n- arm64: factor out PAGE_* and CONT_* definitions (bsc#1068032).\n- arm64: Factor out PAN enabling/disabling into separate uaccess_* macros (bsc#1068032).\n- arm64: Factor out TTBR0_EL1 post-update workaround into a specific asm macro (bsc#1068032).\n- arm64: factor work_pending state machine to C (bsc#1068032).\n- arm64: fpsimd: Prevent registers leaking from dead tasks (bnc#1012382).\n- arm64: Handle el1 synchronous instruction aborts cleanly (bsc#1068032).\n- arm64: Handle faults caused by inadvertent user access with PAN enabled (bsc#1068032).\n- arm64: head.S: get rid of x25 and x26 with \u0027global\u0027 scope (bsc#1068032).\n- arm64: Implement branch predictor hardening for affected Cortex-A CPUs (bsc#1068032).\n- arm64: Implement branch predictor hardening for Falkor (bsc#1068032).\n- arm64: Initialise high_memory global variable earlier (bnc#1012382).\n- arm64: introduce an order for exceptions (bsc#1068032).\n- arm64: introduce mov_q macro to move a constant into a 64-bit register (bsc#1068032).\n- arm64: Introduce uaccess_{disable,enable} functionality based on TTBR0_EL1 (bsc#1068032).\n- arm64: kaslr: Put kernel vectors address in separate data page (bsc#1068032).\n- arm64: Kconfig: Add CONFIG_UNMAP_KERNEL_AT_EL0 (bsc#1068032).\n- arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry (bsc#1068032).\n- arm64: kill ESR_LNX_EXEC (bsc#1068032).\n- arm64: kpti: Fix the interaction between ASID switching and software PAN (bsc#1068032).\n- arm64: kvm: Fix SMCCC handling of unimplemented SMC/HVC calls (bsc#1076232).\n- arm64: kvm: fix VTTBR_BADDR_MASK BUG_ON off-by-one (bnc#1012382).\n- arm64: kvm: Make PSCI_VERSION a fast path (bsc#1068032).\n- arm64: kvm: Use per-CPU vector when BP hardening is enabled (bsc#1068032).\n- arm64: Mask all exceptions during kernel_exit (bsc#1068032).\n- arm64: mm: Add arm64_kernel_unmapped_at_el0 helper (bsc#1068032).\n- arm64: mm: Allocate ASIDs in pairs (bsc#1068032).\n- arm64: mm: Fix and re-enable ARM64_SW_TTBR0_PAN (bsc#1068032).\n- arm64: mm: hardcode rodata=true (bsc#1068032).\n- arm64: mm: Introduce TTBR_ASID_MASK for getting at the ASID in the TTBR (bsc#1068032).\n- arm64: mm: Invalidate both kernel and user ASIDs when performing TLBI (bsc#1068032).\n- arm64: mm: Map entry trampoline into trampoline and kernel page tables (bsc#1068032).\n- arm64: mm: Move ASID from TTBR0 to TTBR1 (bsc#1068032).\n- arm64: mm: Remove pre_ttbr0_update_workaround for Falkor erratum #E1003 (bsc#1068032).\n- arm64: mm: Rename post_ttbr0_update_workaround (bsc#1068032).\n- arm64: mm: Temporarily disable ARM64_SW_TTBR0_PAN (bsc#1068032).\n- arm64: mm: Use non-global mappings for kernel space (bsc#1068032).\n- arm64: Move BP hardening to check_and_switch_context (bsc#1068032).\n- arm64: Move post_ttbr_update_workaround to C code (bsc#1068032).\n- arm64: Move the async/fiq helpers to explicitly set process context flags (bsc#1068032).\n- arm64: SW PAN: Point saved ttbr0 at the zero page when switching to init_mm (bsc#1068032).\n- arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb (bsc#1068032).\n- arm64: swp emulation: bound LL/SC retries before rescheduling (bsc#1068032).\n- arm64: sysreg: Fix unprotected macro argmuent in write_sysreg (bsc#1068032).\n- arm64: Take into account ID_AA64PFR0_EL1.CSV3 (bsc#1068032).\n- arm64: thunderx2: remove branch predictor hardening References: bsc#1076232 This causes undefined instruction abort on the smc call from guest kernel. Disable until kvm is fixed.\n- arm64: tls: Avoid unconditional zeroing of tpidrro_el0 for native tasks (bsc#1068032).\n- arm64: Turn on KPTI only on CPUs that need it (bsc#1076187).\n- arm64: use alternative auto-nop (bsc#1068032).\n- arm64: use RET instruction for exiting the trampoline (bsc#1068032).\n- arm64: xen: Enable user access before a privcmd hvc call (bsc#1068032).\n- arm/arm64: kvm: Make default HYP mappings non-excutable (bsc#1068032).\n- arm: avoid faulting on qemu (bnc#1012382).\n- arm: BUG if jumping to usermode address in kernel mode (bnc#1012382).\n- arm-ccn: perf: Prevent module unload while PMU is in use (bnc#1012382).\n- arm: dma-mapping: disallow dma_get_sgtable() for non-kernel managed memory (bnc#1012382).\n- arm: dts: am335x-evmsk: adjust mmc2 param to allow suspend (bnc#1012382).\n- arm: dts: kirkwood: fix pin-muxing of MPP7 on OpenBlocks A7 (bnc#1012382).\n- arm: dts: omap3: logicpd-torpedo-37xx-devkit: Fix MMC1 cd-gpio (bnc#1012382).\n- arm: dts: ti: fix PCI bus dtc warnings (bnc#1012382).\n- arm: kprobes: Align stack to 8-bytes in test code (bnc#1012382).\n- arm: kprobes: Fix the return address of multiple kretprobes (bnc#1012382).\n- arm: kvm: Fix VTTBR_BADDR_MASK BUG_ON off-by-one (bnc#1012382).\n- arm: OMAP1: DMA: Correct the number of logical channels (bnc#1012382).\n- arm: OMAP2+: Fix device node reference counts (bnc#1012382).\n- arm: OMAP2+: gpmc-onenand: propagate error on initialization failure (bnc#1012382).\n- arm: OMAP2+: Release device node after it is no longer needed (bnc#1012382).\n- asm-prototypes: Clear any CPP defines before declaring the functions (git-fixes).\n- asn.1: check for error from ASN1_OP_END__ACT actions (bnc#1012382).\n- asn.1: fix out-of-bounds read when parsing indefinite length item (bnc#1012382).\n- asoc: fsl_ssi: AC\u002797 ops need regmap, clock and cleaning up on failure (bsc#1031717).\n- asoc: twl4030: fix child-node lookup (bsc#1031717).\n- asoc: wm_adsp: Fix validation of firmware and coeff lengths (bsc#1031717).\n- ath9k: fix tx99 potential info leak (bnc#1012382).\n- atm: horizon: Fix irq release error (bnc#1012382).\n- audit: ensure that \u0027audit=1\u0027 actually enables audit for PID 1 (bnc#1012382).\n- axonram: Fix gendisk handling (bnc#1012382).\n- backlight: pwm_bl: Fix overflow condition (bnc#1012382).\n- bcache: add a comment in journal bucket reading (bsc#1076110).\n- bcache: Avoid nested function definition (bsc#1076110).\n- bcache: bch_allocator_thread() is not freezable (bsc#1076110).\n- bcache: bch_writeback_thread() is not freezable (bsc#1076110).\n- bcache: check return value of register_shrinker (bsc#1076110).\n- bcache: documentation formatting, edited for clarity, stripe alignment notes (bsc#1076110).\n- bcache: documentation updates and corrections (bsc#1076110).\n- bcache: Do not reinvent the wheel but use existing llist API (bsc#1076110).\n- bcache: do not write back data if reading it failed (bsc#1076110).\n- bcache: explicitly destroy mutex while exiting (bnc#1012382).\n- bcache: fix a comments typo in bch_alloc_sectors() (bsc#1076110).\n- bcache: Fix building error on MIPS (bnc#1012382).\n- bcache: fix sequential large write IO bypass (bsc#1076110).\n- bcache: fix wrong cache_misses statistics (bnc#1012382).\n- bcache: gc does not work when triggering by manual command (bsc#1076110, bsc#1038078).\n- bcache: implement PI controller for writeback rate (bsc#1076110).\n- bcache: increase the number of open buckets (bsc#1076110).\n- bcache: only permit to recovery read error when cache device is clean (bnc#1012382 bsc#1043652).\n- bcache: partition support: add 16 minors per bcacheN device (bsc#1076110, bsc#1019784).\n- bcache: rearrange writeback main thread ratelimit (bsc#1076110).\n- bcache: recover data from backing when data is clean (bnc#1012382 bsc#1043652).\n- bcache: Remove redundant set_capacity (bsc#1076110).\n- bcache: remove unused parameter (bsc#1076110).\n- bcache: rewrite multiple partitions support (bsc#1076110, bsc#1038085).\n- bcache: safeguard a dangerous addressing in closure_queue (bsc#1076110).\n- bcache: silence static checker warning (bsc#1076110).\n- bcache: smooth writeback rate control (bsc#1076110).\n- bcache.txt: standardize document format (bsc#1076110).\n- bcache: update bio-\u003ebi_opf bypass/writeback REQ_ flag hints (bsc#1076110).\n- bcache: update bucket_in_use in real time (bsc#1076110).\n- bcache: Update continue_at() documentation (bsc#1076110).\n- bcache: use kmalloc to allocate bio in bch_data_verify() (bsc#1076110).\n- bcache: use llist_for_each_entry_safe() in __closure_wake_up() (bsc#1076110).\n- bcache: writeback rate clamping: make 32 bit safe (bsc#1076110).\n- bcache: writeback rate shouldn\u0027t artifically clamp (bsc#1076110).\n- be2net: restore properly promisc mode after queues reconfiguration (bsc#963844 FATE#320192).\n- block: wake up all tasks blocked in get_request() (bnc#1012382).\n- bluetooth: btusb: driver to enable the usb-wakeup feature (bnc#1012382).\n- bnx2x: do not rollback VF MAC/VLAN filters we did not configure (bnc#1012382).\n- bnx2x: fix possible overrun of VFPF multicast addresses array (bnc#1012382).\n- bnx2x: prevent crash when accessing PTP with interface down (bnc#1012382).\n- btrfs: add missing memset while reading compressed inline extents (bnc#1012382).\n- btrfs: clear space cache inode generation always (bnc#1012382).\n- btrfs: embed extent_changeset::range_changed to the structure (dependent patch, bsc#1031395).\n- btrfs: qgroup: Fix qgroup reserved space underflow by only freeing reserved ranges (bsc#1031395).\n- btrfs: qgroup: Fix qgroup reserved space underflow caused by buffered write and quotas being enabled (bsc#1031395).\n- btrfs: qgroup: Introduce extent changeset for qgroup reserve functions (dependent patch, bsc#1031395).\n- btrfs: qgroup: Return actually freed bytes for qgroup release or free data (bsc#1031395).\n- btrfs: qgroup-test: Fix backport error in qgroup selftest (just to make CONFIG_BTRFS_FS_RUN_SANITY_TESTS pass compile).\n- btrfs: ulist: make the finalization function public (dependent patch, bsc#1031395).\n- btrfs: ulist: rename ulist_fini to ulist_release (dependent patch, bsc#1031395).\n- can: af_can: canfd_rcv(): replace WARN_ONCE by pr_warn_once (bnc#1012382).\n- can: af_can: can_rcv(): replace WARN_ONCE by pr_warn_once (bnc#1012382).\n- can: ems_usb: cancel urb on -EPIPE and -EPROTO (bnc#1012382).\n- can: esd_usb2: cancel urb on -EPIPE and -EPROTO (bnc#1012382).\n- can: gs_usb: fix return value of the \u0027set_bittiming\u0027 callback (bnc#1012382).\n- can: kvaser_usb: cancel urb on -EPIPE and -EPROTO (bnc#1012382).\n- can: kvaser_usb: Fix comparison bug in kvaser_usb_read_bulk_callback() (bnc#1012382).\n- can: kvaser_usb: free buf in error paths (bnc#1012382).\n- can: kvaser_usb: ratelimit errors if incomplete messages are received (bnc#1012382).\n- can: peak: fix potential bug in packet fragmentation (bnc#1012382).\n- can: ti_hecc: Fix napi poll return value for repoll (bnc#1012382).\n- can: usb_8dev: cancel urb on -EPIPE and -EPROTO (bnc#1012382).\n- cdc-acm: apply quirk for card reader (bsc#1060279).\n- cdrom: factor out common open_for_* code (bsc#1048585).\n- cdrom: wait for tray to close (bsc#1048585).\n- ceph: more accurate statfs (bsc#1077068).\n- clk: imx6: refine hdmi_isfr\u0027s parent to make HDMI work on i.MX6 SoCs w/o VPU (bnc#1012382).\n- clk: mediatek: add the option for determining PLL source clock (bnc#1012382).\n- clk: tegra: Fix cclk_lp divisor register (bnc#1012382).\n- config: arm64: enable HARDEN_BRANCH_PREDICTOR\n- config: arm64: enable UNMAP_KERNEL_AT_EL0\n- cpuidle: fix broadcast control when broadcast can not be entered (bnc#1012382).\n- cpuidle: powernv: Pass correct drv-\u003ecpumask for registration (bnc#1012382).\n- cpuidle: Validate cpu_dev in cpuidle_add_sysfs() (bnc#1012382).\n- crypto: algapi - fix NULL dereference in crypto_remove_spawns() (bnc#1012382).\n- crypto: chacha20poly1305 - validate the digest size (bnc#1012382).\n- crypto: chelsio - select CRYPTO_GF128MUL (bsc#1048325).\n- crypto: crypto4xx - increase context and scatter ring buffer elements (bnc#1012382).\n- crypto: deadlock between crypto_alg_sem/rtnl_mutex/genl_mutex (bnc#1012382).\n- crypto: mcryptd - protect the per-CPU queue with a lock (bnc#1012382).\n- crypto: n2 - cure use after free (bnc#1012382).\n- crypto: pcrypt - fix freeing pcrypt instances (bnc#1012382).\n- crypto: s5p-sss - Fix completing crypto request in IRQ handler (bnc#1012382).\n- crypto: tcrypt - fix buffer lengths in test_aead_speed() (bnc#1012382).\n- cxl: Check if vphb exists before iterating over AFU devices (bsc#1066223).\n- dax: Pass detailed error code from __dax_fault() (bsc#1072484).\n- dccp: do not restart ccid2_hc_tx_rto_expire() if sk in closed state (bnc#1012382).\n- delay: add poll_event_interruptible (bsc#1048585).\n- dlm: fix malfunction of dlm_tool caused by debugfs changes (bsc#1077704).\n- dmaengine: dmatest: move callback wait queue to thread context (bnc#1012382).\n- dmaengine: Fix array index out of bounds warning in __get_unmap_pool() (bnc#1012382).\n- dmaengine: pl330: fix double lock (bnc#1012382).\n- dmaengine: ti-dma-crossbar: Correct am335x/am43xx mux value type (bnc#1012382).\n- dm btree: fix serious bug in btree_split_beneath() (bnc#1012382).\n- dm bufio: fix shrinker scans when (nr_to_scan \u003c retain_target) (bnc#1012382).\n- dm thin metadata: THIN_MAX_CONCURRENT_LOCKS should be 6 (bnc#1012382).\n- drivers/firmware: Expose psci_get_version through psci_ops structure (bsc#1068032).\n- drm/amd/amdgpu: fix console deadlock if late init failed (bnc#1012382).\n- drm: extra printk() wrapper macros (bnc#1012382).\n- drm/exynos/decon5433: set STANDALONE_UPDATE_F on output enablement (bnc#1012382).\n- drm/exynos: gem: Drop NONCONTIG flag for buffers allocated without IOMMU (bnc#1012382).\n- drm/omap: fix dmabuf mmap for dma_alloc\u0027ed buffers (bnc#1012382).\n- drm/radeon: fix atombios on big endian (bnc#1012382).\n- drm/radeon: reinstate oland workaround for sclk (bnc#1012382).\n- drm/radeon/si: add dpm quirk for Oland (bnc#1012382).\n- drm/vmwgfx: Potential off by one in vmw_view_add() (bnc#1012382).\n- dynamic-debug-howto: fix optional/omitted ending line number to be LARGE instead of 0 (bnc#1012382).\n- edac, i5000, i5400: Fix definition of NRECMEMB register (bnc#1012382).\n- edac, i5000, i5400: Fix use of MTR_DRAM_WIDTH macro (bnc#1012382).\n- edac, sb_edac: Fix missing break in switch (bnc#1012382).\n- eeprom: at24: check at24_read/write arguments (bnc#1012382).\n- efi/esrt: Cleanup bad memory map log messages (bnc#1012382).\n- efi: Move some sysfs files to be read-only by root (bnc#1012382).\n- eventpoll.h: add missing epoll event masks (bnc#1012382).\n- ext4: fix crash when a directory\u0027s i_size is too small (bnc#1012382).\n- ext4: Fix ENOSPC handling in DAX page fault handle (bsc#1072484).\n- ext4: fix fdatasync(2) after fallocate(2) operation (bnc#1012382).\n- fbdev: controlfb: Add missing modes to fix out of bounds access (bnc#1012382).\n- Fix EX_SIZE. We do not have the patches that shave off parts of the exception data.\n- Fix mishandling of cases with MSR not being present (writing to MSR even though _state == -1).\n- Fix return value from ib[rs|pb]_enabled()\n- Fixup hang when calling \u0027nvme list\u0027 on all paths down (bsc#1070052).\n- fjes: Fix wrong netdevice feature flags (bnc#1012382).\n- flow_dissector: properly cap thoff field (bnc#1012382).\n- fm10k: ensure we process SM mbx when processing VF mbx (bnc#1012382).\n- fork: clear thread stack upon allocation (bsc#1077560).\n- fscache: Fix the default for fscache_maybe_release_page() (bnc#1012382).\n- futex: Prevent overflow by strengthen input validation (bnc#1012382).\n- gcov: disable for COMPILE_TEST (bnc#1012382).\n- gfs2: Take inode off order_write list when setting jdata flag (bnc#1012382).\n- gpio: altera: Use handle_level_irq when configured as a level_high (bnc#1012382).\n- hid: chicony: Add support for another ASUS Zen AiO keyboard (bnc#1012382).\n- hid: xinmo: fix for out of range for THT 2P arcade controller (bnc#1012382).\n- hrtimer: Reset hrtimer cpu base proper on CPU hotplug (bnc#1012382).\n- hv: kvp: Avoid reading past allocated blocks from KVP file (bnc#1012382).\n- hwmon: (asus_atk0110) fix uninitialized data access (bnc#1012382).\n- i40iw: Account for IPv6 header when setting MSS (bsc#1024376 FATE#321249).\n- i40iw: Allocate a sdbuf per CQP WQE (bsc#1024376 FATE#321249).\n- i40iw: Cleanup AE processing (bsc#1024376 FATE#321249).\n- i40iw: Clear CQP Head/Tail during initialization (bsc#1024376 FATE#321249).\n- i40iw: Correct ARP index mask (bsc#1024376 FATE#321249).\n- i40iw: Do not allow posting WR after QP is flushed (bsc#1024376 FATE#321249).\n- i40iw: Do not free sqbuf when event is I40IW_TIMER_TYPE_CLOSE (bsc#1024376 FATE#321249).\n- i40iw: Do not generate CQE for RTR on QP flush (bsc#1024376 FATE#321249).\n- i40iw: Do not retransmit MPA request after it is ACKed (bsc#1024376 FATE#321249).\n- i40iw: Fixes for static checker warnings (bsc#1024376 FATE#321249).\n- i40iw: Ignore AE source field in AEQE for some AEs (bsc#1024376 FATE#321249).\n- i40iw: Move cqp_cmd_head init to CQP initialization (bsc#1024376 FATE#321249).\n- i40iw: Move exception_lan_queue to VSI structure (bsc#1024376 FATE#321249).\n- i40iw: Move MPA request event for loopback after connect (bsc#1024376 FATE#321249).\n- i40iw: Notify user of established connection after QP in RTS (bsc#1024376 FATE#321249).\n- i40iw: Reinitialize IEQ on MTU change (bsc#1024376 FATE#321249).\n- ib/hfi1: Fix misspelling in comment (bsc#973818, fate#319242).\n- ib/hfi1: Prevent kernel QP post send hard lockups (bsc#973818 FATE#319242).\n- ib/ipoib: Fix lockdep issue found on ipoib_ib_dev_heavy_flush (git-fixes).\n- ib/ipoib: Fix race condition in neigh creation (bsc#1022595 FATE#322350).\n- ib/ipoib: Grab rtnl lock on heavy flush when calling ndo_open/stop (bnc#1012382).\n- ib/mlx4: Increase maximal message size under UD QP (bnc#1012382).\n- ib/mlx5: Assign send CQ and recv CQ of UMR QP (bnc#1012382).\n- ib/mlx5: Serialize access to the VMA list (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689).\n- ibmvnic: Allocate and request vpd in init_resources (bsc#1076872).\n- ibmvnic: Do not handle RX interrupts when not up (bsc#1075066).\n- ibmvnic: Fix IP offload control buffer (bsc#1076899).\n- ibmvnic: Fix IPv6 packet descriptors (bsc#1076899).\n- ibmvnic: Fix pending MAC address changes (bsc#1075627).\n- ibmvnic: Modify buffer size and number of queues on failover (bsc#1076872).\n- ibmvnic: Revert to previous mtu when unsupported value requested (bsc#1076872).\n- ibmvnic: Wait for device response when changing MAC (bsc#1078681).\n- ib/rdmavt: restore IRQs on error path in rvt_create_ah() (bsc#973818, fate#319242).\n- ib/srpt: Disable RDMA access by the initiator (bnc#1012382).\n- ib/srpt: Fix ACL lookup during login (bsc#1024296 FATE#321265).\n- ib/uverbs: Fix command checking as part of ib_uverbs_ex_modify_qp() (FATE#321231 FATE#321473 FATE#322153 FATE#322149).\n- igb: check memory allocation failure (bnc#1012382).\n- ima: fix hash algorithm initialization (bnc#1012382).\n- inet: frag: release spinlock before calling icmp_send() (bnc#1012382).\n- input: 88pm860x-ts - fix child-node lookup (bnc#1012382).\n- input: elantech - add new icbody type 15 (bnc#1012382).\n- input: i8042 - add TUXEDO BU1406 (N24_25BU) to the nomux list (bnc#1012382).\n- input: trackpoint - force 3 buttons if 0 button is reported (bnc#1012382).\n- input: twl4030-vibra - fix sibling-node lookup (bnc#1012382).\n- input: twl6040-vibra - fix child-node lookup (bnc#1012382).\n- input: twl6040-vibra - fix DT node memory management (bnc#1012382).\n- intel_th: pci: Add Gemini Lake support (bnc#1012382).\n- iommu/arm-smmu-v3: Do not free page table ops twice (bnc#1012382).\n- iommu/vt-d: Fix scatterlist offset handling (bnc#1012382).\n- ip6_gre: remove the incorrect mtu limit for ipgre tap (bsc#1022912 FATE#321246).\n- ip6_tunnel: disable dst caching if tunnel is dual-stack (bnc#1012382).\n- ip_gre: remove the incorrect mtu limit for ipgre tap (bsc#1022912 FATE#321246).\n- ipmi: Stop timers before cleaning up the module (bnc#1012382).\n- ipv4: Fix use-after-free when flushing FIB tables (bnc#1012382).\n- ipv4: igmp: guard against silly MTU values (bnc#1012382).\n- ipv4: Make neigh lookup keys for loopback/point-to-point devices be INADDR_ANY (bnc#1012382).\n- ipv6: Fix getsockopt() for sockets with default IPV6_AUTOFLOWLABEL (bnc#1012382).\n- ipv6: fix possible mem leaks in ipv6_make_skb() (bnc#1012382).\n- ipv6: fix udpv6 sendmsg crash caused by too small MTU (bnc#1012382).\n- ipv6: ip6_make_skb() needs to clear cork.base.dst (git-fixes).\n- ipv6: mcast: better catch silly mtu values (bnc#1012382).\n- ipv6: reorder icmpv6_init() and ip6_mr_init() (bnc#1012382).\n- ipvlan: fix ipv6 outbound device (bnc#1012382).\n- ipvlan: remove excessive packet scrubbing (bsc#1070799).\n- irda: vlsi_ir: fix check for DMA mapping errors (bnc#1012382).\n- irqchip/crossbar: Fix incorrect type of register size (bnc#1012382).\n- iscsi_iser: Re-enable \u0027iser_pi_guard\u0027 module parameter (bsc#1062129).\n- iscsi-target: fix memory leak in lio_target_tiqn_addtpg() (bnc#1012382).\n- iscsi-target: Make TASK_REASSIGN use proper se_cmd-\u003ecmd_kref (bnc#1012382).\n- isdn: kcapi: avoid uninitialized data (bnc#1012382).\n- iser-target: Fix possible use-after-free in connection establishment error (FATE#321732).\n- iw_cxgb4: Only validate the MSN for successful completions (bnc#1012382).\n- iw_cxgb4: reflect the original WR opcode in drain cqes (bsc#321658 FATE#1005778 bsc#321660 FATE#1005780 bsc#321661 FATE#1005781).\n- iw_cxgb4: when flushing, complete all wrs in a chain (bsc#321658 FATE#1005778 bsc#321660 FATE#1005780 bsc#321661 FATE#1005781).\n- ixgbe: fix use of uninitialized padding (bnc#1012382).\n- jump_label: Invoke jump_label_test() via early_initcall() (bnc#1012382).\n- kabi fix for new hash_cred function (bsc#1012917).\n- kabi: Keep KVM stable after enable s390 wire up bpb feature (bsc#1076805).\n- kABI: protect struct bpf_map (kabi).\n- kABI: protect struct ipv6_pinfo (kabi).\n- kABI: protect struct t10_alua_tg_pt_gp (kabi).\n- kABI: protect struct usbip_device (kabi).\n- kabi/severities: arm64: ignore cpu capability array\n- kabi/severities: do not care about stuff_RSB\n- kaiser: Set _PAGE_NX only if supported (bnc#1012382).\n- kaiser: Set _PAGE_NX only if supported (bnc#1012382).\n- kbuild: add \u0027-fno-stack-check\u0027 to kernel build options (bnc#1012382).\n- kbuild: modversions for EXPORT_SYMBOL() for asm (bsc#1074621 bsc#1068032).\n- kbuild: pkg: use --transform option to prefix paths in tar (bnc#1012382).\n- kdb: Fix handling of kallsyms_symbol_next() return value (bnc#1012382).\n- kernel/acct.c: fix the acct-\u003eneedcheck check in check_free_space() (bnc#1012382).\n- kernel: make groups_sort calling a responsibility group_info allocators (bnc#1012382).\n- kernel/signal.c: protect the SIGNAL_UNKILLABLE tasks from !sig_kernel_only() signals (bnc#1012382).\n- kernel/signal.c: protect the traced SIGNAL_UNKILLABLE tasks from SIGKILL (bnc#1012382).\n- kernel/signal.c: remove the no longer needed SIGNAL_UNKILLABLE check in complete_signal() (bnc#1012382).\n- keys: add missing permission check for request_key() destination (bnc#1012382).\n- kprobes/x86: Disable preemption in ftrace-based jprobes (bnc#1012382).\n- kpti: Rename to PAGE_TABLE_ISOLATION (bnc#1012382).\n- kpti: Report when enabled (bnc#1012382).\n- kvm: Fix stack-out-of-bounds read in write_mmio (bnc#1012382).\n- kvm: nVMX: reset nested_run_pending if the vCPU is going to be reset (bnc#1012382).\n- kvm: nVMX: VMCLEAR should not cause the vCPU to shut down (bnc#1012382).\n- kvm: pci-assign: do not map smm memory slot pages in vt-d page tables (bnc#1012382).\n- kvm: s390: Enable all facility bits that are known good for passthrough (bsc#1076805).\n- kvm: s390: wire up bpb feature (bsc#1076805).\n- kvm: VMX: Fix enable VPID conditions (bnc#1012382).\n- kvm: VMX: remove I/O port 0x80 bypass on Intel hosts (bnc#1012382).\n- kvm: vmx: Scrub hardware GPRs at VM-exit (bnc#1012382 bsc#1068032).\n- kvm: x86: Add memory barrier on vmcs field lookup (bnc#1012382).\n- kvm: x86: correct async page present tracepoint (bnc#1012382).\n- kvm: x86: Exit to user-mode on #UD intercept when emulator requires (bnc#1012382).\n- kvm: X86: Fix load RFLAGS w/o the fixed bit (bnc#1012382).\n- kvm: x86: fix RSM when PCID is non-zero (bnc#1012382).\n- kvm: x86: inject exceptions produced by x86_decode_insn (bnc#1012382).\n- kvm: x86: pvclock: Handle first-time write to pvclock-page contains random junk (bnc#1012382).\n- l2tp: cleanup l2tp_tunnel_delete calls (bnc#1012382).\n- lan78xx: Fix failure in USB Full Speed (bnc#1012382).\n- libata: apply MAX_SEC_1024 to all LITEON EP1 series devices (bnc#1012382).\n- libata: drop WARN from protocol error in ata_sff_qc_issue() (bnc#1012382).\n- lib/genalloc.c: make the avail variable an atomic_long_t (bnc#1012382).\n- macvlan: Only deliver one copy of the frame to the macvlan interface (bnc#1012382).\n- md: more open-coded offset_in_page() (bsc#1076110).\n- media: dvb: i2c transfers over usb cannot be done from stack (bnc#1012382).\n- mfd: cros ec: spi: Do not send first message too soon (bnc#1012382).\n- mfd: twl4030-audio: Fix sibling-node lookup (bnc#1012382).\n- mfd: twl6040: Fix child-node lookup (bnc#1012382).\n- mlxsw: reg: Fix SPVMLR max record count (bnc#1012382).\n- mlxsw: reg: Fix SPVM max record count (bnc#1012382).\n- mm: avoid returning VM_FAULT_RETRY from -\u003epage_mkwrite handlers (bnc#1012382).\n- mmc: core: Do not leave the block driver in a suspended state (bnc#1012382).\n- mmc: mediatek: Fixed bug where clock frequency could be set wrong (bnc#1012382).\n- mm: drop unused pmdp_huge_get_and_clear_notify() (bnc#1012382).\n- mm: Handle 0 flags in _calc_vm_trans() macro (bnc#1012382).\n- mm/mprotect: add a cond_resched() inside change_pmd_range() (bnc#1077871, bnc#1078002).\n- mm/vmstat: Make NR_TLB_REMOTE_FLUSH_RECEIVED available even on UP (bnc#1012382).\n- module: Add retpoline tag to VERMAGIC (bnc#1012382).\n- module: set __jump_table alignment to 8 (bnc#1012382).\n- more bio_map_user_iov() leak fixes (bnc#1012382).\n- mtd: nand: Fix writing mtdoops to nand flash (bnc#1012382).\n- net: Allow neigh contructor functions ability to modify the primary_key (bnc#1012382).\n- net/appletalk: Fix kernel memory disclosure (bnc#1012382).\n- net: bcmgenet: correct MIB access of UniMAC RUNT counters (bnc#1012382).\n- net: bcmgenet: correct the RBUF_OVFL_CNT and RBUF_ERR_CNT MIB values (bnc#1012382).\n- net: bcmgenet: power down internal phy if open or resume fails (bnc#1012382).\n- net: bcmgenet: Power up the internal PHY before probing the MII (bnc#1012382).\n- net: bcmgenet: reserved phy revisions must be checked first (bnc#1012382).\n- net: bridge: fix early call to br_stp_change_bridge_id and plug newlink leaks (bnc#1012382).\n- net: core: fix module type in sock_diag_bind (bnc#1012382).\n- net: Do not allow negative values for busy_read and busy_poll sysctl interfaces (bnc#1012382).\n- net: fec: fix multicast filtering hardware setup (bnc#1012382).\n- netfilter: bridge: honor frag_max_size when refragmenting (bnc#1012382).\n- netfilter: do not track fragmented packets (bnc#1012382).\n- netfilter: ipvs: Fix inappropriate output of procfs (bnc#1012382).\n- netfilter: nfnetlink_queue: fix secctx memory leak (bnc#1012382).\n- netfilter: nfnetlink_queue: fix timestamp attribute (bsc#1074134).\n- netfilter: nfnl_cthelper: fix a race when walk the nf_ct_helper_hash table (bnc#1012382).\n- netfilter: nfnl_cthelper: Fix memory leak (bnc#1012382).\n- netfilter: nfnl_cthelper: fix runtime expectation policy updates (bnc#1012382).\n- net: Fix double free and memory corruption in get_net_ns_by_id() (bnc#1012382).\n- net: igmp: fix source address check for IGMPv3 reports (bnc#1012382).\n- net: igmp: Use correct source address on IGMPv3 reports (bnc#1012382).\n- net: initialize msg.msg_flags in recvfrom (bnc#1012382).\n- net: ipv4: fix for a race condition in raw_sendmsg (bnc#1012382).\n- netlink: add a start callback for starting a netlink dump (bnc#1012382).\n- net/mac80211/debugfs.c: prevent build failure with CONFIG_UBSAN=y (bnc#1012382).\n- net/mlx5: Avoid NULL pointer dereference on steering cleanup (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689).\n- net/mlx5: Cleanup IRQs in case of unload failure (bsc#966170 FATE#320225 bsc#966172 FATE#320226).\n- net/mlx5e: Add refcount to VXLAN structure (bsc#966170 FATE#320225 bsc#966172 FATE#320226).\n- net/mlx5e: Fix ETS BW check (bsc#966170 FATE#320225 bsc#966172 FATE#320226).\n- net/mlx5e: Fix features check of IPv6 traffic (bsc#966170 FATE#320225 bsc#966172 FATE#320226).\n- net/mlx5e: Fix fixpoint divide exception in mlx5e_am_stats_compare (bsc#1015342).\n- net/mlx5e: Fix possible deadlock of VXLAN lock (bsc#966170 FATE#320225 bsc#966172 FATE#320226).\n- net/mlx5e: Prevent possible races in VXLAN control flow (bsc#966170 FATE#320225 bsc#966172 FATE#320226).\n- net/mlx5: Fix error flow in CREATE_QP command (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689).\n- net/mlx5: Fix rate limit packet pacing naming and struct (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689).\n- net/mlx5: Stay in polling mode when command EQ destroy fails (bsc#966170 FATE#320225 bsc#966172 FATE#320226).\n- net: mvmdio: disable/unprepare clocks in EPROBE_DEFER case (bnc#1012382).\n- net: mvneta: clear interface link status on port disable (bnc#1012382).\n- net: mvneta: eliminate wrong call to handle rx descriptor error (fate#319899).\n- net: mvneta: use proper rxq_number in loop on rx queues (fate#319899).\n- net/packet: fix a race in packet_bind() and packet_notifier() (bnc#1012382).\n- net: phy: at803x: Change error to EINVAL for invalid MAC (bnc#1012382).\n- net: phy: micrel: ksz9031: reconfigure autoneg after phy autoneg workaround (bnc#1012382).\n- net: qdisc_pkt_len_init() should be more robust (bnc#1012382).\n- net: qmi_wwan: add Sierra EM7565 1199:9091 (bnc#1012382).\n- net: qmi_wwan: Add USB IDs for MDM6600 modem on Motorola Droid 4 (bnc#1012382).\n- net: reevalulate autoflowlabel setting after sysctl setting (bnc#1012382).\n- net: Resend IGMP memberships upon peer notification (bnc#1012382).\n- net: sctp: fix array overrun read on sctp_timer_tbl (bnc#1012382).\n- net: stmmac: enable EEE in MII, GMII or RGMII only (bnc#1012382).\n- net: systemport: Pad packet before inserting TSB (bnc#1012382).\n- net: systemport: Utilize skb_put_padto() (bnc#1012382).\n- net: tcp: close sock if net namespace is exiting (bnc#1012382).\n- net: wimax/i2400m: fix NULL-deref at probe (bnc#1012382).\n- nfsd: auth: Fix gid sorting when rootsquash enabled (bnc#1012382).\n- nfsd: Fix another OPEN stateid race (bnc#1012382).\n- nfsd: fix nfsd_minorversion(.., NFSD_AVAIL) (bnc#1012382).\n- nfsd: fix nfsd_reset_versions for NFSv4 (bnc#1012382).\n- nfsd: Fix stateid races between OPEN and CLOSE (bnc#1012382).\n- nfsd: Make init_open_stateid() a bit more whole (bnc#1012382).\n- nfs: Do not take a reference on fl-\u003efl_file for LOCK operation (bnc#1012382).\n- nfs: Fix a typo in nfs_rename() (bnc#1012382).\n- nfs: improve shinking of access cache (bsc#1012917).\n- nfsv4.1 respect server\u0027s max size in CREATE_SESSION (bnc#1012382).\n- nfsv4: Fix client recovery when server reboots multiple times (bnc#1012382).\n- nohz: Prevent a timer interrupt storm in tick_nohz_stop_sched_tick() (bnc#1012382).\n- n_tty: fix EXTPROC vs ICANON interaction with TIOCINQ (aka FIONREAD) (bnc#1012382).\n- nvme_fc: correct hang in nvme_ns_remove() (bsc#1075811).\n- nvme_fc: fix rogue admin cmds stalling teardown (bsc#1075811).\n- nvme-pci: Remove watchdog timer (bsc#1066163).\n- openrisc: fix issue handling 8 byte get_user calls (bnc#1012382).\n- packet: fix crash in fanout_demux_rollover() (bnc#1012382).\n- parisc: Fix alignment of pa_tlb_lock in assembly on 32-bit SMP kernel (bnc#1012382).\n- parisc: Hide Diva-built-in serial aux and graphics card (bnc#1012382).\n- partially revert tipc improve link resiliency when rps is activated (bsc#1068038).\n- pci/AER: Report non-fatal errors only to the affected endpoint (bnc#1012382).\n- pci: Avoid bus reset if bridge itself is broken (bnc#1012382).\n- pci: Create SR-IOV virtfn/physfn links before attaching driver (bnc#1012382).\n- pci: Detach driver before procfs \u0026 sysfs teardown on device remove (bnc#1012382).\n- pci/PME: Handle invalid data when reading Root Status (bnc#1012382).\n- pci / PM: Force devices to D0 in pci_pm_thaw_noirq() (bnc#1012382).\n- perf symbols: Fix symbols__fixup_end heuristic for corner cases (bnc#1012382).\n- perf test attr: Fix ignored test case result (bnc#1012382).\n- phy: work around \u0027phys\u0027 references to usb-nop-xceiv devices (bnc#1012382).\n- pinctrl: adi2: Fix Kconfig build problem (bnc#1012382).\n- pinctrl: st: add irq_request/release_resources callbacks (bnc#1012382).\n- pipe: avoid round_pipe_size() nr_pages overflow on 32-bit (bnc#1012382).\n- powerpc/64: Add macros for annotating the destination of rfid/hrfid (bsc#1068032, bsc#1075087).\n- powerpc/64: Convert fast_exception_return to use RFI_TO_USER/KERNEL (bsc#1068032, bsc#1075087).\n- powerpc/64: Convert the syscall exit path to use RFI_TO_USER/KERNEL (bsc#1068032, bsc#1075087).\n- powerpc/64s: Add EX_SIZE definition for paca exception save areas (bsc#1068032, bsc#1075087).\n- powerpc/64s: Add support for RFI flush of L1-D cache (bsc#1068032,  bsc#1075087).\n- powerpc/64s: Allow control of RFI flush via debugfs (bsc#1068032, bsc#1075087).\n- powerpc/64s: Convert slb_miss_common to use RFI_TO_USER/KERNEL (bsc#1068032, bsc#1075087).\n- powerpc/64s: Simple RFI macro conversions (bsc#1068032, bsc#1075087).\n- powerpc/64s: Support disabling RFI flush with no_rfi_flush and nopti (bsc#1068032, bsc#1075087).\n- powerpc/64s: Wire up cpu_show_meltdown() (bsc#1068032).\n- powerpc/asm: Allow including ppc_asm.h in asm files (bsc#1068032, bsc#1075087).\n- powerpc/ipic: Fix status get and status clear (bnc#1012382).\n- powerpc/perf: Dereference BHRB entries safely (bsc#1066223).\n- powerpc/perf/hv-24x7: Fix incorrect comparison in memord (bnc#1012382).\n- powerpc/powernv: Check device-tree for RFI flush settings (bsc#1068032,  bsc#1075087).\n- powerpc/powernv/cpufreq: Fix the frequency read by /proc/cpuinfo (bnc#1012382).\n- powerpc/powernv/ioda2: Gracefully fail if too many TCE levels requested (bnc#1012382).\n- powerpc/pseries: include linux/types.h in asm/hvcall.h (bsc#1068032, bsc#1075087).\n- powerpc/pseries: Introduce H_GET_CPU_CHARACTERISTICS (bsc#1068032, bsc#1075087).\n- powerpc/pseries: Query hypervisor for RFI flush settings (bsc#1068032,  bsc#1075087).\n- powerpc/pseries/rfi-flush: Call setup_rfi_flush() after LPM migration (bsc#1068032, bsc#1075087).\n- powerpc/rfi-flush: Add DEBUG_RFI config option (bsc#1068032, bsc#1075087).\n- powerpc/rfi-flush: Make setup_rfi_flush() not __init (bsc#1068032, bsc#1075087).\n- powerpc/rfi-flush: Move RFI flush fields out of the paca (unbreak kABI) (bsc#1068032, bsc#1075087).\n- powerpc/rfi-flush: Move the logic to avoid a redo into the sysfs code (bsc#1068032, bsc#1075087).\n- powerpc/rfi-flush: prevent crash when changing flush type to fallback after system boot (bsc#1068032, bsc#1075087).\n- ppp: Destroy the mutex when cleanup (bnc#1012382).\n- pppoe: take -\u003eneeded_headroom of lower device into account on xmit (bnc#1012382).\n- pti: unbreak EFI (bsc#1074709).\n- r8152: fix the list rx_done may be used without initialization (bnc#1012382).\n- r8152: prevent the driver from transmitting packets with carrier off (bnc#1012382).\n- r8169: fix memory corruption on retrieval of hardware statistics (bnc#1012382).\n- raid5: Set R5_Expanded on parity devices as well as data (bnc#1012382).\n- ravb: Remove Rx overflow log messages (bnc#1012382).\n- rbd: set max_segments to USHRT_MAX (bnc#1012382).\n- rdma/cma: Avoid triggering undefined behavior (bnc#1012382).\n- rdma/i40iw: Remove MSS change support (bsc#1024376 FATE#321249).\n- rds: Fix NULL pointer dereference in __rds_rdma_map (bnc#1012382).\n- rds: Heap OOB write in rds_message_alloc_sgs() (bnc#1012382).\n- rds: null pointer dereference in rds_atomic_free_op (bnc#1012382).\n- Re-enable fixup detection by CPU type in case hypervisor call fails.\n- regulator: core: Rely on regulator_dev_release to free constraints (bsc#1074847).\n- regulator: da9063: Return an error code on probe failure (bsc#1074847).\n- regulator: pwm: Fix regulator ramp delay for continuous mode (bsc#1074847).\n- regulator: Try to resolve regulators supplies on registration (bsc#1074847).\n- Revert \u0027Bluetooth: btusb: driver to enable the usb-wakeup feature\u0027 (bnc#1012382).\n- Revert \u0027drm/armada: Fix compile fail\u0027 (bnc#1012382).\n- Revert \u0027drm/radeon: dont switch vt on suspend\u0027 (bnc#1012382).\n- Revert \u0027ipsec: Fix aborted xfrm policy dump crash\u0027 (kabi).\n- Revert \u0027kaiser: vmstat show NR_KAISERTABLE as nr_overhead\u0027 (kabi).\n- Revert \u0027lib/genalloc.c: make the avail variable an atomic_long_t\u0027 (kabi).\n- Revert \u0027module: Add retpoline tag to VERMAGIC\u0027 (bnc#1012382 kabi).\n- Revert \u0027module: Add retpoline tag to VERMAGIC\u0027 (kabi).\n- Revert \u0027netlink: add a start callback for starting a netlink dump\u0027 (kabi).\n- Revert \u0027ocfs2: should wait dio before inode lock in ocfs2_setattr()\u0027 (bnc#1012382).\n- Revert \u0027Re-enable fixup detection by CPU type in case hypervisor call fails.\u0027 The firmware update is required for the existing instructions to also do the cache flush.\n- Revert \u0027s390/kbuild: enable modversions for symbols exported from asm\u0027 (bnc#1012382).\n- Revert \u0027sched/deadline: Use the revised wakeup rule for suspending constrained dl tasks\u0027 (kabi).\n- Revert \u0027scsi: libsas: align sata_device\u0027s rps_resp on a cacheline\u0027 (kabi).\n- Revert \u0027spi: SPI_FSL_DSPI should depend on HAS_DMA\u0027 (bnc#1012382).\n- Revert \u0027userfaultfd: selftest: vm: allow to build in vm/ directory\u0027 (bnc#1012382).\n- Revert \u0027x86/efi: Build our own page table structures\u0027 (bnc#1012382).\n- Revert \u0027x86/efi: Hoist page table switching code into efi_call_virt()\u0027 (bnc#1012382).\n- Revert \u0027x86/mm/pat: Ensure cpa-\u003epfn only contains page frame numbers\u0027 (bnc#1012382).\n- rfi-flush: Make DEBUG_RFI a CONFIG option (bsc#1068032, bsc#1075087).\n- ring-buffer: Mask out the info bits when returning buffer page length (bnc#1012382).\n- route: also update fnhe_genid when updating a route cache (bnc#1012382).\n- route: update fnhe_expires for redirect when the fnhe exists (bnc#1012382).\n- rtc: cmos: Initialize hpet timer before irq is registered (bsc#1077592).\n- rtc: pcf8563: fix output clock rate (bnc#1012382).\n- rtc: pl031: make interrupt optional (bnc#1012382).\n- rtc: set the alarm to the next expiring timer (bnc#1012382).\n- s390: always save and restore all registers on context switch (bnc#1012382).\n- s390/cpuinfo: show facilities as reported by stfle (bnc#1076847, LTC#163740).\n- s390: fix compat system call table (bnc#1012382).\n- s390/pci: do not require AIS facility (bnc#1012382).\n- s390/qeth: no ETH header for outbound AF_IUCV (LTC#156276 bnc#1012382 bnc#1053472).\n- s390/runtime instrumentation: simplify task exit handling (bnc#1012382).\n- sch_dsmark: fix invalid skb_cow() usage (bnc#1012382).\n- sched/deadline: Make sure the replenishment timer fires in the next period (bnc#1012382).\n- sched/deadline: Throttle a constrained deadline task activated after the deadline (bnc#1012382).\n- sched/deadline: Use deadline instead of period when calculating overflow (bnc#1012382).\n- sched/deadline: Use the revised wakeup rule for suspending constrained dl tasks (bnc#1012382).\n- sched/deadline: Zero out positive runtime after throttling constrained tasks (git-fixes).\n- sched/rt: Do not pull from current CPU if only one CPU to pull (bnc#1022476).\n- scsi: bfa: integer overflow in debugfs (bnc#1012382).\n- scsi: cxgb4i: fix Tx skb leak (bnc#1012382).\n- scsi: handle ABORTED_COMMAND on Fujitsu ETERNUS (bsc#1069138).\n- scsi: hpsa: cleanup sas_phy structures in sysfs when unloading (bnc#1012382).\n- scsi: hpsa: destroy sas transport properties before scsi_host (bnc#1012382).\n- scsi: libsas: align sata_device\u0027s rps_resp on a cacheline (bnc#1012382).\n- scsi: lpfc: Use after free in lpfc_rq_buf_free() (bsc#1037838).\n- scsi: mpt3sas: Fix IO error occurs on pulling out a drive from RAID1 volume created on two SATA drive (bnc#1012382).\n- scsi: sd: change allow_restart to bool in sysfs interface (bnc#1012382).\n- scsi: sd: change manage_start_stop to bool in sysfs interface (bnc#1012382).\n- scsi: sg: disable SET_FORCE_LOW_DMA (bnc#1012382).\n- scsi: sr: wait for the medium to become ready (bsc#1048585).\n- sctp: do not allow the v4 socket to bind a v4mapped v6 address (bnc#1012382).\n- sctp: do not free asoc when it is already dead in sctp_sendmsg (bnc#1012382).\n- sctp: Replace use of sockets_allocated with specified macro (bnc#1012382).\n- sctp: return error if the asoc has been peeled off in sctp_wait_for_sndbuf (bnc#1012382).\n- sctp: use the right sk after waking up from wait_buf sleep (bnc#1012382).\n- selftest/powerpc: Fix false failures for skipped tests (bnc#1012382).\n- selftests/x86: Add test_vsyscall (bnc#1012382).\n- selftests/x86/ldt_get: Add a few additional tests for limits (bnc#1012382).\n- serial: 8250_pci: Add Amazon PCI serial device ID (bnc#1012382).\n- serial: 8250: Preserve DLD[7:4] for PORT_XR17V35X (bnc#1012382).\n- series.conf: move core networking (including netfilter) into sorted section\n- series.conf: whitespace cleanup\n- Set supported_modules_check 1 (bsc#1072163).\n- sfc: do not warn on successful change of MAC (bnc#1012382).\n- sh_eth: fix SH7757 GEther initialization (bnc#1012382).\n- sh_eth: fix TSU resource handling (bnc#1012382).\n- sit: update frag_off info (bnc#1012382).\n- sock: free skb in skb_complete_tx_timestamp on error (bnc#1012382).\n- sparc64/mm: set fields in deferred pages (bnc#1012382).\n- spi_ks8995: fix \u0027BUG: key accdaa28 not in .data!\u0027 (bnc#1012382).\n- spi: sh-msiof: Fix DMA transfer size check (bnc#1012382).\n- spi: xilinx: Detect stall with Unknown commands (bnc#1012382).\n- staging: android: ashmem: fix a race condition in ASHMEM_SET_SIZE ioctl (bnc#1012382).\n- sunrpc: add auth_unix hash_cred() function (bsc#1012917).\n- sunrpc: add generic_auth hash_cred() function (bsc#1012917).\n- sunrpc: add hash_cred() function to rpc_authops struct (bsc#1012917).\n- sunrpc: add RPCSEC_GSS hash_cred() function (bsc#1012917).\n- sunrpc: Fix rpc_task_begin trace point (bnc#1012382).\n- sunrpc: replace generic auth_cred hash with auth-specific function (bsc#1012917).\n- sunrpc: use supplimental groups in auth hash (bsc#1012917).\n- sunxi-rsb: Include OF based modalias in device uevent (bnc#1012382).\n- sysfs/cpu: Add vulnerability folder (bnc#1012382).\n- sysfs/cpu: Fix typos in vulnerability documentation (bnc#1012382).\n- sysfs: spectre_v2, handle spec_ctrl (bsc#1075994 bsc#1075091).\n- sysrq : fix Show Regs call trace on ARM (bnc#1012382).\n- target: Avoid early CMD_T_PRE_EXECUTE failures during ABORT_TASK (bnc#1012382).\n- target/file: Do not return error for UNMAP if length is zero (bnc#1012382).\n- target: fix ALUA transition timeout handling (bnc#1012382).\n- target:fix condition return in core_pr_dump_initiator_port() (bnc#1012382).\n- target: fix race during implicit transition work flushes (bnc#1012382).\n- target/iscsi: Fix a race condition in iscsit_add_reject_from_cmd() (bnc#1012382).\n- target: Use system workqueue for ALUA transitions (bnc#1012382).\n- tcp: correct memory barrier usage in tcp_check_space() (bnc#1012382).\n- tcp: fix under-evaluated ssthresh in TCP Vegas (bnc#1012382).\n- tcp md5sig: Use skb\u0027s saddr when replying to an incoming segment (bnc#1012382).\n- tcp: __tcp_hdrlen() helper (bnc#1012382).\n- tg3: Fix rx hang on MTU change with 5717/5719 (bnc#1012382).\n- thermal/drivers/step_wise: Fix temperature regulation misbehavior (bnc#1012382).\n- thermal: hisilicon: Handle return value of clk_prepare_enable (bnc#1012382).\n- tipc: fix cleanup at module unload (bnc#1012382).\n- tipc: fix memory leak in tipc_accept_from_sock() (bnc#1012382).\n- tipc: improve link resiliency when rps is activated (bsc#1068038).\n- tracing: Allocate mask_str buffer dynamically (bnc#1012382).\n- tracing: Fix converting enum\u0027s from the map in trace_event_eval_update() (bnc#1012382).\n- tracing: Fix crash when it fails to alloc ring buffer (bnc#1012382).\n- tracing: Fix possible double free on failure of allocating trace buffer (bnc#1012382).\n- tracing: Remove extra zeroing out of the ring buffer page (bnc#1012382).\n- tty fix oops when rmmod 8250 (bnc#1012382).\n- uas: Always apply US_FL_NO_ATA_1X quirk to Seagate devices (bnc#1012382).\n- uas: ignore UAS for Norelsys NS1068(X) chips (bnc#1012382).\n- udf: Avoid overflow when session starts at large offset (bnc#1012382).\n- um: link vmlinux with -no-pie (bnc#1012382).\n- usb: Add device quirk for Logitech HD Pro Webcam C925e (bnc#1012382).\n- usb: add RESET_RESUME for ELSA MicroLink 56K (bnc#1012382).\n- usb: core: Add type-specific length check of BOS descriptors (bnc#1012382).\n- usb: core: prevent malicious bNumInterfaces overflow (bnc#1012382).\n- usb: devio: Prevent integer overflow in proc_do_submiturb() (bnc#1012382).\n- usb: Fix off by one in type-specific length check of BOS SSP capability (git-fixes).\n- usb: fix usbmon BUG trigger (bnc#1012382).\n- usb: gadget: configs: plug memory leak (bnc#1012382).\n- usb: gadget: ffs: Forbid usb_ep_alloc_request from sleeping (bnc#1012382).\n- usb: gadgetfs: Fix a potential memory leak in \u0027dev_config()\u0027 (bnc#1012382).\n- usb: gadget: f_uvc: Sanity check wMaxPacketSize for SuperSpeed (bnc#1012382).\n- usb: gadget: udc: remove pointer dereference after free (bnc#1012382).\n- usb: hub: Cycle HUB power when initialization fails (bnc#1012382).\n- usb: Increase usbfs transfer limit (bnc#1012382).\n- usbip: Fix implicit fallthrough warning (bnc#1012382).\n- usbip: Fix potential format overflow in userspace tools (bnc#1012382).\n- usbip: fix stub_rx: get_pipe() to validate endpoint number (bnc#1012382).\n- usbip: fix stub_rx: harden CMD_SUBMIT path to handle malicious input (bnc#1012382).\n- usbip: fix stub_send_ret_submit() vulnerability to null transfer_buffer (bnc#1012382).\n- usbip: fix usbip bind writing random string after command in match_busid (bnc#1012382).\n- usbip: prevent leaking socket pointer address in messages (bnc#1012382).\n- usbip: prevent vhci_hcd driver from leaking a socket pointer address (bnc#1012382).\n- usbip: remove kernel addresses from usb device and urb debug msgs (bnc#1012382).\n- usbip: stub: stop printing kernel pointer addresses in messages (bnc#1012382).\n- usbip: vhci: stop printing kernel pointer addresses in messages (bnc#1012382).\n- usb: misc: usb3503: make sure reset is low for at least 100us (bnc#1012382).\n- usb: musb: da8xx: fix babble condition handling (bnc#1012382).\n- usb: phy: isp1301: Add OF device ID table (bnc#1012382).\n- usb: phy: isp1301: Fix build warning when CONFIG_OF is disabled (git-fixes).\n- usb: phy: tahvo: fix error handling in tahvo_usb_probe() (bnc#1012382).\n- usb: quirks: Add no-lpm quirk for KY-688 USB 3.1 Type-C Hub (bnc#1012382).\n- usb: serial: cp210x: add IDs for LifeScan OneTouch Verio IQ (bnc#1012382).\n- usb: serial: cp210x: add new device ID ELV ALC 8xxx (bnc#1012382).\n- usb: serial: ftdi_sio: add id for Airbus DS P8GR (bnc#1012382).\n- usb: serial: option: adding support for YUGA CLM920-NC5 (bnc#1012382).\n- usb: serial: option: add Quectel BG96 id (bnc#1012382).\n- usb: serial: option: add support for Telit ME910 PID 0x1101 (bnc#1012382).\n- usb: serial: qcserial: add Sierra Wireless EM7565 (bnc#1012382).\n- usb: uas and storage: Add US_FL_BROKEN_FUA for another JMicron JMS567 ID (bnc#1012382).\n- usb: usbfs: Filter flags passed in from user space (bnc#1012382).\n- usb: usbip: Fix possible deadlocks reported by lockdep (bnc#1012382).\n- usb: xhci: Add XHCI_TRUST_TX_LENGTH for Renesas uPD720201 (bnc#1012382).\n- usb: xhci: fix panic in xhci_free_virt_devices_depth_first (bnc#1012382).\n- userfaultfd: selftest: vm: allow to build in vm/ directory (bnc#1012382).\n- userfaultfd: shmem: __do_fault requires VM_FAULT_NOPAGE (bnc#1012382).\n- video: fbdev: au1200fb: Release some resources if a memory allocation fails (bnc#1012382).\n- video: fbdev: au1200fb: Return an error code if a memory allocation fails (bnc#1012382).\n- virtio: release virtio index when fail to device_register (bnc#1012382).\n- vmxnet3: repair memory leak (bnc#1012382).\n- vsyscall: Fix permissions for emulate mode with KAISER/PTI (bnc#1012382).\n- vt6655: Fix a possible sleep-in-atomic bug in vt6655_suspend (bnc#1012382).\n- vti6: Do not report path MTU below IPV6_MIN_MTU (bnc#1012382).\n- vti6: fix device register to report IFLA_INFO_KIND (bnc#1012382).\n- workqueue: trigger WARN if queue_delayed_work() is called with NULL @wq (bnc#1012382).\n- writeback: fix memory leak in wb_queue_work() (bnc#1012382).\n- x.509: fix buffer overflow detection in sprint_oid() (bsc#1075078).\n- x509: fix printing uninitialized stack memory when OID is empty (bsc#1075078).\n- x.509: reject invalid BIT STRING for subjectPublicKey (bnc#1012382).\n- x86/acpi: Handle SCI interrupts above legacy space gracefully (bsc#1068984).\n- x86/acpi: Reduce code duplication in mp_override_legacy_irq() (bsc#1068984).\n- x86/alternatives: Add missing \u0027\\n\u0027 at end of ALTERNATIVE inline asm (bnc#1012382).\n- x86/alternatives: Fix optimize_nops() checking (bnc#1012382).\n- x86/apic/vector: Fix off by one in error path (bnc#1012382).\n- x86/asm/32: Make sync_core() handle missing CPUID on all 32-bit kernels (bnc#1012382).\n- x86/boot: Fix early command-line parsing when matching at end (bsc#1068032).\n- x86/cpu: Factor out application of forced CPU caps (bnc#1012382).\n- x86/cpufeatures: Add X86_BUG_CPU_INSECURE (bnc#1012382).\n- x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] (bnc#1012382).\n- x86/cpufeatures: Make CPU bugs sticky (bnc#1012382).\n- x86/cpu: Implement CPU vulnerabilites sysfs functions (bnc#1012382).\n- x86/cpu: Merge bugs.c and bugs_64.c (bnc#1012382).\n- x86/cpu: Rename Merrifield2 to Moorefield (bsc#985025).\n- x86/cpu: Rename \u0027WESTMERE2\u0027 family to \u0027NEHALEM_G\u0027 (bsc#985025).\n- x86/cpu, x86/pti: Do not enable PTI on AMD processors (bnc#1012382).\n- x86/Documentation: Add PTI description (bnc#1012382).\n- x86/efi-bgrt: Replace early_memremap() with memremap() (bnc#1012382).\n- x86/efi: Build our own page table structures (fate#320512).\n- x86/efi: Hoist page table switching code into efi_call_virt() (fate#320512).\n- x86/entry: Use SYSCALL_DEFINE() macros for sys_modify_ldt() (bnc#1012382).\n- x86/hpet: Prevent might sleep splat on resume (bnc#1012382).\n- x86/kasan: Clear kasan_zero_page after TLB flush (bnc#1012382).\n- x86/kasan: Write protect kasan zero shadow (bnc#1012382).\n- x86/microcode/intel: Extend BDW late-loading further with LLC size check (bnc#1012382).\n- x86/microcode/intel: Extend BDW late-loading with a revision check (bnc#1012382).\n- x86/mm/32: Move setup_clear_cpu_cap(X86_FEATURE_PCID) earlier (git-fixes).\n- x86/mm: Disable PCID on 32-bit kernels (bnc#1012382).\n- x86/mm/pat: Ensure cpa-\u003epfn only contains page frame numbers (fate#320588).\n- x86/PCI: Make broadcom_postcore_init() check acpi_disabled (bnc#1012382).\n- x86/pti: Document fix wrong index (bnc#1012382).\n- x86/pti/efi: broken conversion from efi to kernel page table (bnc#1012382).\n- x86/pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN (bnc#1012382).\n- x86/retpolines/spec_ctrl: disable IBRS on !SKL if retpolines are active (bsc#1068032).\n- x86/smpboot: Remove stale TLB flush invocations (bnc#1012382).\n- x86/spectre_v2: fix ordering in IBRS initialization (bsc#1075994 bsc#1075091).\n- x86/spectre_v2: nospectre_v2 means nospec too (bsc#1075994 bsc#1075091).\n- x86/tlb: Drop the _GPL from the cpu_tlbstate export (bnc#1012382).\n- x86/vm86/32: Switch to flush_tlb_mm_range() in mark_screen_rdonly() (bnc#1012382).\n- xen-netfront: avoid crashing on resume after a failure in talk_to_netback() (bnc#1012382).\n- xen-netfront: Improve error handling during initialization (bnc#1012382).\n- xfrm: Copy policy family in clone_policy (bnc#1012382).\n- xfs: add configurable error support to metadata buffers (bsc#1068569).\n- xfs: add configuration handlers for specific errors (bsc#1068569).\n- xfs: add configuration of error failure speed (bsc#1068569).\n- xfs: add \u0027fail at unmount\u0027 error handling configuration (bsc#1068569).\n- xfs: Add infrastructure needed for error propagation during buffer IO failure (bsc#1068569).\n- xfs: address kabi for xfs buffer retry infrastructure (kabi).\n- xfs: configurable error behavior via sysfs (bsc#1068569).\n- xfs: fix incorrect extent state in xfs_bmap_add_extent_unwritten_real (bnc#1012382).\n- xfs: fix log block underflow during recovery cycle verification (bnc#1012382).\n- xfs: fix up inode32/64 (re)mount handling (bsc#1069160).\n- xfs: introduce metadata IO error class (bsc#1068569).\n- xfs: introduce table-based init for error behaviors (bsc#1068569).\n- xfs: Properly retry failed inode items in case of error during buffer writeback (bsc#1068569).\n- xfs: remove xfs_trans_ail_delete_bulk (bsc#1068569).\n- xhci: Do not add a virt_dev to the devs array before it\u0027s fully allocated (bnc#1012382).\n- xhci: Fix ring leak in failure path of xhci_alloc_virt_device() (bnc#1012382).\n- xhci: plat: Register shutdown for xhci_plat (bnc#1012382).\n- zram: set physical queue limits to avoid array out of bounds accesses (bnc#1012382).\n- x86/microcode/intel: Fix BDW late-loading revision check (bnc#1012382).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-CAASP-ALL-2018-271,SUSE-SLE-DESKTOP-12-SP3-2018-271,SUSE-SLE-HA-12-SP3-2018-271,SUSE-SLE-Live-Patching-12-SP3-2018-271,SUSE-SLE-SDK-12-SP3-2018-271,SUSE-SLE-SERVER-12-SP3-2018-271,SUSE-SLE-WE-12-SP3-2018-271",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0383-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:0383-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180383-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:0383-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-February/003711.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1005778",
        "url": "https://bugzilla.suse.com/1005778"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1005780",
        "url": "https://bugzilla.suse.com/1005780"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1005781",
        "url": "https://bugzilla.suse.com/1005781"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1012382",
        "url": "https://bugzilla.suse.com/1012382"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1012917",
        "url": "https://bugzilla.suse.com/1012917"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1015342",
        "url": "https://bugzilla.suse.com/1015342"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1015343",
        "url": "https://bugzilla.suse.com/1015343"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1019784",
        "url": "https://bugzilla.suse.com/1019784"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1022476",
        "url": "https://bugzilla.suse.com/1022476"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1022595",
        "url": "https://bugzilla.suse.com/1022595"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1022912",
        "url": "https://bugzilla.suse.com/1022912"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1024296",
        "url": "https://bugzilla.suse.com/1024296"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1024376",
        "url": "https://bugzilla.suse.com/1024376"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1031395",
        "url": "https://bugzilla.suse.com/1031395"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1031492",
        "url": "https://bugzilla.suse.com/1031492"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1031717",
        "url": "https://bugzilla.suse.com/1031717"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1037838",
        "url": "https://bugzilla.suse.com/1037838"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1038078",
        "url": "https://bugzilla.suse.com/1038078"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1038085",
        "url": "https://bugzilla.suse.com/1038085"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1040182",
        "url": "https://bugzilla.suse.com/1040182"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1043652",
        "url": "https://bugzilla.suse.com/1043652"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1048325",
        "url": "https://bugzilla.suse.com/1048325"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1048585",
        "url": "https://bugzilla.suse.com/1048585"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1053472",
        "url": "https://bugzilla.suse.com/1053472"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1060279",
        "url": "https://bugzilla.suse.com/1060279"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1062129",
        "url": "https://bugzilla.suse.com/1062129"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1066163",
        "url": "https://bugzilla.suse.com/1066163"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1066223",
        "url": "https://bugzilla.suse.com/1066223"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1068032",
        "url": "https://bugzilla.suse.com/1068032"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1068038",
        "url": "https://bugzilla.suse.com/1068038"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1068569",
        "url": "https://bugzilla.suse.com/1068569"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1068984",
        "url": "https://bugzilla.suse.com/1068984"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1069138",
        "url": "https://bugzilla.suse.com/1069138"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1069160",
        "url": "https://bugzilla.suse.com/1069160"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1070052",
        "url": "https://bugzilla.suse.com/1070052"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1070799",
        "url": "https://bugzilla.suse.com/1070799"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1072163",
        "url": "https://bugzilla.suse.com/1072163"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1072484",
        "url": "https://bugzilla.suse.com/1072484"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1073229",
        "url": "https://bugzilla.suse.com/1073229"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1073928",
        "url": "https://bugzilla.suse.com/1073928"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074134",
        "url": "https://bugzilla.suse.com/1074134"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074488",
        "url": "https://bugzilla.suse.com/1074488"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074621",
        "url": "https://bugzilla.suse.com/1074621"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074709",
        "url": "https://bugzilla.suse.com/1074709"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074839",
        "url": "https://bugzilla.suse.com/1074839"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074847",
        "url": "https://bugzilla.suse.com/1074847"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075066",
        "url": "https://bugzilla.suse.com/1075066"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075078",
        "url": "https://bugzilla.suse.com/1075078"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075087",
        "url": "https://bugzilla.suse.com/1075087"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075091",
        "url": "https://bugzilla.suse.com/1075091"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075397",
        "url": "https://bugzilla.suse.com/1075397"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075428",
        "url": "https://bugzilla.suse.com/1075428"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075617",
        "url": "https://bugzilla.suse.com/1075617"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075621",
        "url": "https://bugzilla.suse.com/1075621"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075627",
        "url": "https://bugzilla.suse.com/1075627"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075811",
        "url": "https://bugzilla.suse.com/1075811"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075994",
        "url": "https://bugzilla.suse.com/1075994"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076017",
        "url": "https://bugzilla.suse.com/1076017"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076110",
        "url": "https://bugzilla.suse.com/1076110"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076187",
        "url": "https://bugzilla.suse.com/1076187"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076232",
        "url": "https://bugzilla.suse.com/1076232"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076805",
        "url": "https://bugzilla.suse.com/1076805"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076847",
        "url": "https://bugzilla.suse.com/1076847"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076872",
        "url": "https://bugzilla.suse.com/1076872"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076899",
        "url": "https://bugzilla.suse.com/1076899"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1077068",
        "url": "https://bugzilla.suse.com/1077068"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1077560",
        "url": "https://bugzilla.suse.com/1077560"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1077592",
        "url": "https://bugzilla.suse.com/1077592"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1077704",
        "url": "https://bugzilla.suse.com/1077704"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1077871",
        "url": "https://bugzilla.suse.com/1077871"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1078002",
        "url": "https://bugzilla.suse.com/1078002"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1078681",
        "url": "https://bugzilla.suse.com/1078681"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 963844",
        "url": "https://bugzilla.suse.com/963844"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 966170",
        "url": "https://bugzilla.suse.com/966170"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 966172",
        "url": "https://bugzilla.suse.com/966172"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 973818",
        "url": "https://bugzilla.suse.com/973818"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 985025",
        "url": "https://bugzilla.suse.com/985025"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15129 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15129/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17712 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17712/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17862 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17862/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17864 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17864/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-18017 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-18017/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5715 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5715/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1000004 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1000004/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5332 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5332/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5333 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5333/"
      }
    ],
    "title": "Security update for the Linux Kernel",
    "tracking": {
      "current_release_date": "2018-02-07T13:35:19Z",
      "generator": {
        "date": "2018-02-07T13:35:19Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:0383-1",
      "initial_release_date": "2018-02-07T13:35:19Z",
      "revision_history": [
        {
          "date": "2018-02-07T13:35:19Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.4.114-94.11.3.aarch64",
                "product": {
                  "name": "kernel-obs-build-4.4.114-94.11.3.aarch64",
                  "product_id": "kernel-obs-build-4.4.114-94.11.3.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-4.4.114-94.11.3.aarch64",
                "product": {
                  "name": "kernel-default-4.4.114-94.11.3.aarch64",
                  "product_id": "kernel-default-4.4.114-94.11.3.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.4.114-94.11.3.aarch64",
                "product": {
                  "name": "kernel-default-base-4.4.114-94.11.3.aarch64",
                  "product_id": "kernel-default-base-4.4.114-94.11.3.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.4.114-94.11.3.aarch64",
                "product": {
                  "name": "kernel-default-devel-4.4.114-94.11.3.aarch64",
                  "product_id": "kernel-default-devel-4.4.114-94.11.3.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.4.114-94.11.2.aarch64",
                "product": {
                  "name": "kernel-syms-4.4.114-94.11.2.aarch64",
                  "product_id": "kernel-syms-4.4.114-94.11.2.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-4.4.114-94.11.2.noarch",
                "product": {
                  "name": "kernel-devel-4.4.114-94.11.2.noarch",
                  "product_id": "kernel-devel-4.4.114-94.11.2.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-4.4.114-94.11.2.noarch",
                "product": {
                  "name": "kernel-macros-4.4.114-94.11.2.noarch",
                  "product_id": "kernel-macros-4.4.114-94.11.2.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-4.4.114-94.11.2.noarch",
                "product": {
                  "name": "kernel-source-4.4.114-94.11.2.noarch",
                  "product_id": "kernel-source-4.4.114-94.11.2.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-docs-4.4.114-94.11.4.noarch",
                "product": {
                  "name": "kernel-docs-4.4.114-94.11.4.noarch",
                  "product_id": "kernel-docs-4.4.114-94.11.4.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
                "product": {
                  "name": "cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
                  "product_id": "cluster-md-kmp-default-4.4.114-94.11.3.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-default-4.4.114-94.11.3.ppc64le",
                "product": {
                  "name": "dlm-kmp-default-4.4.114-94.11.3.ppc64le",
                  "product_id": "dlm-kmp-default-4.4.114-94.11.3.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
                "product": {
                  "name": "gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
                  "product_id": "gfs2-kmp-default-4.4.114-94.11.3.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
                "product": {
                  "name": "ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
                  "product_id": "ocfs2-kmp-default-4.4.114-94.11.3.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
                "product": {
                  "name": "kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
                  "product_id": "kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.4.114-94.11.3.ppc64le",
                "product": {
                  "name": "kernel-obs-build-4.4.114-94.11.3.ppc64le",
                  "product_id": "kernel-obs-build-4.4.114-94.11.3.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-4.4.114-94.11.3.ppc64le",
                "product": {
                  "name": "kernel-default-4.4.114-94.11.3.ppc64le",
                  "product_id": "kernel-default-4.4.114-94.11.3.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.4.114-94.11.3.ppc64le",
                "product": {
                  "name": "kernel-default-base-4.4.114-94.11.3.ppc64le",
                  "product_id": "kernel-default-base-4.4.114-94.11.3.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.4.114-94.11.3.ppc64le",
                "product": {
                  "name": "kernel-default-devel-4.4.114-94.11.3.ppc64le",
                  "product_id": "kernel-default-devel-4.4.114-94.11.3.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.4.114-94.11.2.ppc64le",
                "product": {
                  "name": "kernel-syms-4.4.114-94.11.2.ppc64le",
                  "product_id": "kernel-syms-4.4.114-94.11.2.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cluster-md-kmp-default-4.4.114-94.11.3.s390x",
                "product": {
                  "name": "cluster-md-kmp-default-4.4.114-94.11.3.s390x",
                  "product_id": "cluster-md-kmp-default-4.4.114-94.11.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-default-4.4.114-94.11.3.s390x",
                "product": {
                  "name": "dlm-kmp-default-4.4.114-94.11.3.s390x",
                  "product_id": "dlm-kmp-default-4.4.114-94.11.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-default-4.4.114-94.11.3.s390x",
                "product": {
                  "name": "gfs2-kmp-default-4.4.114-94.11.3.s390x",
                  "product_id": "gfs2-kmp-default-4.4.114-94.11.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-default-4.4.114-94.11.3.s390x",
                "product": {
                  "name": "ocfs2-kmp-default-4.4.114-94.11.3.s390x",
                  "product_id": "ocfs2-kmp-default-4.4.114-94.11.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.4.114-94.11.3.s390x",
                "product": {
                  "name": "kernel-obs-build-4.4.114-94.11.3.s390x",
                  "product_id": "kernel-obs-build-4.4.114-94.11.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-4.4.114-94.11.3.s390x",
                "product": {
                  "name": "kernel-default-4.4.114-94.11.3.s390x",
                  "product_id": "kernel-default-4.4.114-94.11.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.4.114-94.11.3.s390x",
                "product": {
                  "name": "kernel-default-base-4.4.114-94.11.3.s390x",
                  "product_id": "kernel-default-base-4.4.114-94.11.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.4.114-94.11.3.s390x",
                "product": {
                  "name": "kernel-default-devel-4.4.114-94.11.3.s390x",
                  "product_id": "kernel-default-devel-4.4.114-94.11.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-man-4.4.114-94.11.3.s390x",
                "product": {
                  "name": "kernel-default-man-4.4.114-94.11.3.s390x",
                  "product_id": "kernel-default-man-4.4.114-94.11.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.4.114-94.11.2.s390x",
                "product": {
                  "name": "kernel-syms-4.4.114-94.11.2.s390x",
                  "product_id": "kernel-syms-4.4.114-94.11.2.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-4.4.114-94.11.3.x86_64",
                "product": {
                  "name": "kernel-default-4.4.114-94.11.3.x86_64",
                  "product_id": "kernel-default-4.4.114-94.11.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.4.114-94.11.3.x86_64",
                "product": {
                  "name": "kernel-default-devel-4.4.114-94.11.3.x86_64",
                  "product_id": "kernel-default-devel-4.4.114-94.11.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-extra-4.4.114-94.11.3.x86_64",
                "product": {
                  "name": "kernel-default-extra-4.4.114-94.11.3.x86_64",
                  "product_id": "kernel-default-extra-4.4.114-94.11.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.4.114-94.11.2.x86_64",
                "product": {
                  "name": "kernel-syms-4.4.114-94.11.2.x86_64",
                  "product_id": "kernel-syms-4.4.114-94.11.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
                "product": {
                  "name": "cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
                  "product_id": "cluster-md-kmp-default-4.4.114-94.11.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-default-4.4.114-94.11.3.x86_64",
                "product": {
                  "name": "dlm-kmp-default-4.4.114-94.11.3.x86_64",
                  "product_id": "dlm-kmp-default-4.4.114-94.11.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-default-4.4.114-94.11.3.x86_64",
                "product": {
                  "name": "gfs2-kmp-default-4.4.114-94.11.3.x86_64",
                  "product_id": "gfs2-kmp-default-4.4.114-94.11.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
                "product": {
                  "name": "ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
                  "product_id": "ocfs2-kmp-default-4.4.114-94.11.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
                "product": {
                  "name": "kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
                  "product_id": "kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.4.114-94.11.3.x86_64",
                "product": {
                  "name": "kernel-obs-build-4.4.114-94.11.3.x86_64",
                  "product_id": "kernel-obs-build-4.4.114-94.11.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.4.114-94.11.3.x86_64",
                "product": {
                  "name": "kernel-default-base-4.4.114-94.11.3.x86_64",
                  "product_id": "kernel-default-base-4.4.114-94.11.3.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Desktop 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Desktop 12 SP3",
                  "product_id": "SUSE Linux Enterprise Desktop 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sled:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Availability Extension 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise High Availability Extension 12 SP3",
                  "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-ha:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Live Patching 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Live Patching 12 SP3",
                  "product_id": "SUSE Linux Enterprise Live Patching 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-live-patching:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
                  "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-sdk:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP3",
                  "product_id": "SUSE Linux Enterprise Server 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Workstation Extension 12 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Workstation Extension 12 SP3",
                  "product_id": "SUSE Linux Enterprise Workstation Extension 12 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-we:12:sp3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "kernel-default-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "kernel-default-devel-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-extra-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "kernel-default-extra-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.4.114-94.11.2.noarch as component of SUSE Linux Enterprise Desktop 12 SP3",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch"
        },
        "product_reference": "kernel-devel-4.4.114-94.11.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.4.114-94.11.2.noarch as component of SUSE Linux Enterprise Desktop 12 SP3",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch"
        },
        "product_reference": "kernel-macros-4.4.114-94.11.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.4.114-94.11.2.noarch as component of SUSE Linux Enterprise Desktop 12 SP3",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch"
        },
        "product_reference": "kernel-source-4.4.114-94.11.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-94.11.2.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64"
        },
        "product_reference": "kernel-syms-4.4.114-94.11.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-default-4.4.114-94.11.3.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le"
        },
        "product_reference": "cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-default-4.4.114-94.11.3.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x"
        },
        "product_reference": "cluster-md-kmp-default-4.4.114-94.11.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-default-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-default-4.4.114-94.11.3.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le"
        },
        "product_reference": "dlm-kmp-default-4.4.114-94.11.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-default-4.4.114-94.11.3.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x"
        },
        "product_reference": "dlm-kmp-default-4.4.114-94.11.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-default-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "dlm-kmp-default-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-default-4.4.114-94.11.3.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le"
        },
        "product_reference": "gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-default-4.4.114-94.11.3.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x"
        },
        "product_reference": "gfs2-kmp-default-4.4.114-94.11.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-default-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "gfs2-kmp-default-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-default-4.4.114-94.11.3.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le"
        },
        "product_reference": "ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-default-4.4.114-94.11.3.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x"
        },
        "product_reference": "ocfs2-kmp-default-4.4.114-94.11.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-default-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le"
        },
        "product_reference": "kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP3",
          "product_id": "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-docs-4.4.114-94.11.4.noarch as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch"
        },
        "product_reference": "kernel-docs-4.4.114-94.11.4.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.4.114-94.11.3.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64"
        },
        "product_reference": "kernel-obs-build-4.4.114-94.11.3.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.4.114-94.11.3.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le"
        },
        "product_reference": "kernel-obs-build-4.4.114-94.11.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.4.114-94.11.3.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x"
        },
        "product_reference": "kernel-obs-build-4.4.114-94.11.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "kernel-obs-build-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-94.11.3.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64"
        },
        "product_reference": "kernel-default-4.4.114-94.11.3.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-94.11.3.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le"
        },
        "product_reference": "kernel-default-4.4.114-94.11.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-94.11.3.s390x as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x"
        },
        "product_reference": "kernel-default-4.4.114-94.11.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "kernel-default-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-94.11.3.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64"
        },
        "product_reference": "kernel-default-base-4.4.114-94.11.3.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-94.11.3.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le"
        },
        "product_reference": "kernel-default-base-4.4.114-94.11.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-94.11.3.s390x as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x"
        },
        "product_reference": "kernel-default-base-4.4.114-94.11.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "kernel-default-base-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-94.11.3.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64"
        },
        "product_reference": "kernel-default-devel-4.4.114-94.11.3.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-94.11.3.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le"
        },
        "product_reference": "kernel-default-devel-4.4.114-94.11.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-94.11.3.s390x as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x"
        },
        "product_reference": "kernel-default-devel-4.4.114-94.11.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "kernel-default-devel-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-man-4.4.114-94.11.3.s390x as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x"
        },
        "product_reference": "kernel-default-man-4.4.114-94.11.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.4.114-94.11.2.noarch as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch"
        },
        "product_reference": "kernel-devel-4.4.114-94.11.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.4.114-94.11.2.noarch as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch"
        },
        "product_reference": "kernel-macros-4.4.114-94.11.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.4.114-94.11.2.noarch as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch"
        },
        "product_reference": "kernel-source-4.4.114-94.11.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-94.11.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64"
        },
        "product_reference": "kernel-syms-4.4.114-94.11.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-94.11.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le"
        },
        "product_reference": "kernel-syms-4.4.114-94.11.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-94.11.2.s390x as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x"
        },
        "product_reference": "kernel-syms-4.4.114-94.11.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-94.11.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
          "product_id": "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64"
        },
        "product_reference": "kernel-syms-4.4.114-94.11.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-94.11.3.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64"
        },
        "product_reference": "kernel-default-4.4.114-94.11.3.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-94.11.3.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le"
        },
        "product_reference": "kernel-default-4.4.114-94.11.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-94.11.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x"
        },
        "product_reference": "kernel-default-4.4.114-94.11.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "kernel-default-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-94.11.3.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64"
        },
        "product_reference": "kernel-default-base-4.4.114-94.11.3.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-94.11.3.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le"
        },
        "product_reference": "kernel-default-base-4.4.114-94.11.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-94.11.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x"
        },
        "product_reference": "kernel-default-base-4.4.114-94.11.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "kernel-default-base-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-94.11.3.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64"
        },
        "product_reference": "kernel-default-devel-4.4.114-94.11.3.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-94.11.3.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le"
        },
        "product_reference": "kernel-default-devel-4.4.114-94.11.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-94.11.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x"
        },
        "product_reference": "kernel-default-devel-4.4.114-94.11.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "kernel-default-devel-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-man-4.4.114-94.11.3.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x"
        },
        "product_reference": "kernel-default-man-4.4.114-94.11.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.4.114-94.11.2.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch"
        },
        "product_reference": "kernel-devel-4.4.114-94.11.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.4.114-94.11.2.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch"
        },
        "product_reference": "kernel-macros-4.4.114-94.11.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.4.114-94.11.2.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch"
        },
        "product_reference": "kernel-source-4.4.114-94.11.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-94.11.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64"
        },
        "product_reference": "kernel-syms-4.4.114-94.11.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-94.11.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le"
        },
        "product_reference": "kernel-syms-4.4.114-94.11.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-94.11.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x"
        },
        "product_reference": "kernel-syms-4.4.114-94.11.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-94.11.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64"
        },
        "product_reference": "kernel-syms-4.4.114-94.11.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-extra-4.4.114-94.11.3.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP3",
          "product_id": "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
        },
        "product_reference": "kernel-default-extra-4.4.114-94.11.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP3"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-15129",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15129"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function get_net_ns_by_id() in net/core/net_namespace.c does not check for the net::count value after it has found a peer network in netns_ids idr, which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15129",
          "url": "https://www.suse.com/security/cve/CVE-2017-15129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074839 for CVE-2017-15129",
          "url": "https://bugzilla.suse.com/1074839"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-07T13:35:19Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-15129"
    },
    {
      "cve": "CVE-2017-17712",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17712"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17712",
          "url": "https://www.suse.com/security/cve/CVE-2017-17712"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073229 for CVE-2017-17712",
          "url": "https://bugzilla.suse.com/1073229"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073230 for CVE-2017-17712",
          "url": "https://bugzilla.suse.com/1073230"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-07T13:35:19Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-17712"
    },
    {
      "cve": "CVE-2017-17862",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17862"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 ignores unreachable code, even though it would still be processed by JIT compilers. This behavior, also considered an improper branch-pruning logic issue, could possibly be used by local users for denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17862",
          "url": "https://www.suse.com/security/cve/CVE-2017-17862"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17862",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-07T13:35:19Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17862"
    },
    {
      "cve": "CVE-2017-17864",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17864"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 mishandles states_equal comparisons between the pointer data type and the UNKNOWN_VALUE data type, which allows local users to obtain potentially sensitive address information, aka a \"pointer leak.\"",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17864",
          "url": "https://www.suse.com/security/cve/CVE-2017-17864"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17864",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-07T13:35:19Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17864"
    },
    {
      "cve": "CVE-2017-18017",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-18017"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-18017",
          "url": "https://www.suse.com/security/cve/CVE-2017-18017"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074488 for CVE-2017-18017",
          "url": "https://bugzilla.suse.com/1074488"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080255 for CVE-2017-18017",
          "url": "https://bugzilla.suse.com/1080255"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2017-18017",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-18017",
          "url": "https://bugzilla.suse.com/1115893"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 971126 for CVE-2017-18017",
          "url": "https://bugzilla.suse.com/971126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-07T13:35:19Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-18017"
    },
    {
      "cve": "CVE-2017-5715",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5715"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5715",
          "url": "https://www.suse.com/security/cve/CVE-2017-5715"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074741 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074741"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074919 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075007 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075007"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075262 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075262"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075419 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075419"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076115 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076115"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076372 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076372"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076606 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1078353 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1078353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080039 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1080039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087887 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1088147 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1088147"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1095735 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1095735"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102517 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1102517"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105108 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1105108"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1126516 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1126516"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173489 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1173489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201457 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201457"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203236 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1203236"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-07T13:35:19Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5715"
    },
    {
      "cve": "CVE-2018-1000004",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1000004"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1000004",
          "url": "https://www.suse.com/security/cve/CVE-2018-1000004"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076017 for CVE-2018-1000004",
          "url": "https://bugzilla.suse.com/1076017"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-1000004",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-07T13:35:19Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-1000004"
    },
    {
      "cve": "CVE-2018-5332",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5332"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5332",
          "url": "https://www.suse.com/security/cve/CVE-2018-5332"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075621 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1075621"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.6,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-07T13:35:19Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-5332"
    },
    {
      "cve": "CVE-2018-5333",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5333"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
          "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5333",
          "url": "https://www.suse.com/security/cve/CVE-2018-5333"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075617 for CVE-2018-5333",
          "url": "https://bugzilla.suse.com/1075617"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-5333",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Desktop 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:cluster-md-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:dlm-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:gfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP3:ocfs2-kmp-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.ppc64le",
            "SUSE Linux Enterprise Live Patching 12 SP3:kgraft-patch-4_4_114-94_11-default-1-4.3.5.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-base-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-devel-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-default-man-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-devel-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-macros-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-source-4.4.114-94.11.2.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP3:kernel-syms-4.4.114-94.11.2.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-docs-4.4.114-94.11.4.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP3:kernel-obs-build-4.4.114-94.11.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP3:kernel-default-extra-4.4.114-94.11.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-07T13:35:19Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-5333"
    }
  ]
}

SUSE-SU-2018:0416-1

Vulnerability from csaf_suse - Published: 2018-02-09 15:27 - Updated: 2018-02-09 15:27

Summary

Security update for the Linux Kernel

Severity

Important

Notes

Title of the patch: Security update for the Linux Kernel

Description of the patch: The SUSE Linux Enterprise 12 SP2 kernel was updated to 4.4.114 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis (bnc#1068032). The previous fix using CPU Microcode has been complemented by building the Linux Kernel with return trampolines aka 'retpolines'. - CVE-2017-15129: A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel The function get_net_ns_by_id() in net/core/net_namespace.c did not check for the net::count value after it has found a peer network in netns_ids idr, which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely (bnc#1074839). - CVE-2017-17712: The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel has a race condition in inet->hdrincl that leads to uninitialized stack pointer usage; this allowed a local user to execute code and gain privileges (bnc#1073229). - CVE-2017-17862: kernel/bpf/verifier.c in the Linux kernel ignored unreachable code, even though it would still be processed by JIT compilers. This behavior, also considered an improper branch-pruning logic issue, could possibly be used by local users for denial of service (bnc#1073928). - CVE-2017-17864: kernel/bpf/verifier.c in the Linux kernel mishandled states_equal comparisons between the pointer data type and the UNKNOWN_VALUE data type, which allowed local users to obtain potentially sensitive address information, aka a 'pointer leak (bnc#1073928). - CVE-2017-18017: The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel allowed remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action (bnc#1074488). - CVE-2018-1000004: In the Linux kernel a race condition vulnerability existed in the sound system, this can lead to a deadlock and denial of service condition (bnc#1076017). - CVE-2018-5332: In the Linux kernel the rds_message_alloc_sgs() function did not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c) (bnc#1075621). - CVE-2018-5333: In the Linux kernel the rds_cmsg_atomic function in net/rds/rdma.c mishandled cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference (bnc#1075617). The following non-security bugs were fixed: - 8021q: fix a memory leak for VLAN 0 device (bnc#1012382). - ACPI / scan: Prefer devices without _HID/_CID for _ADR matching (bnc#1012382). - ARC: uaccess: dont use 'l' gcc inline asm constraint modifier (bnc#1012382). - Fix EX_SIZE. We do not have the patches that shave off parts of the exception data. - Fix build error in vma.c (bnc#1012382). - Fix mishandling of cases with MSR not being present (writing to MSR even though _state == -1). - Fix return value from ib[rs|pb]_enabled() - Input: trackpoint - force 3 buttons if 0 button is reported (bnc#1012382). - KVM: s390: Enable all facility bits that are known good for passthrough (bsc#1076806). - Kabi: Keep KVM stable after enable s390 wire up bpb feature (bsc#1076806). - Move RFI sysfs to a separate patch - Move the RFI debug code into separate patch. - Re-enable fixup detection by CPU type in case hypervisor call fails. - Revert 'Bluetooth: btusb: driver to enable the usb-wakeup feature' (bnc#1012382). - Revert 'Re-enable fixup detection by CPU type in case hypervisor call fails.' The firmware update is required for the existing instructions to also do the cache flush. - Revert 'arm64: alternatives: add enable parameter to conditional asm macros' (bsc#1068032). - Revert 'drm/armada: Fix compile fail' (bnc#1012382). - Revert 'drm/radeon: dont switch vt on suspend' (bnc#1012382). - Revert 'ipsec: Fix aborted xfrm policy dump crash' (kabi). - Revert 'kaiser: vmstat show NR_KAISERTABLE as nr_overhead' (kabi). - Revert 'lib/genalloc.c: make the avail variable an atomic_long_t' (kabi). - Revert 'module: Add retpoline tag to VERMAGIC' (bnc#1012382 kabi). - Revert 'netlink: add a start callback for starting a netlink dump' (kabi). - Revert 'ocfs2: should wait dio before inode lock in ocfs2_setattr()' (bnc#1012382). - Revert 's390/kbuild: enable modversions for symbols exported from asm' (bnc#1012382). - Revert 'sched/deadline: Use the revised wakeup rule for suspending constrained dl tasks' (kabi). - Revert 'scsi: libsas: align sata_device's rps_resp on a cacheline' (kabi). - Revert 'spi: SPI_FSL_DSPI should depend on HAS_DMA' (bnc#1012382). - Revert 'userfaultfd: selftest: vm: allow to build in vm/ directory' (bnc#1012382). - Revert 'x86/efi: Build our own page table structures' (bnc#1012382). - Revert 'x86/efi: Hoist page table switching code into efi_call_virt()' (bnc#1012382). - Revert 'x86/mm/pat: Ensure cpa->pfn only contains page frame numbers' (bnc#1012382). - SMB2: Fix share type handling (bnc#1074392). - Set supported_modules_check 1 (bsc#1072163). - Update patches.suse/powerpc-Secure-memory-rfi-flush-SLE12SP3.patch (bsc#1068032, bsc#1075087). - af_key: fix buffer overread in parse_exthdrs() (bnc#1012382). - af_key: fix buffer overread in verify_address_len() (bnc#1012382). - afs: Adjust mode bits processing (bnc#1012382). - afs: Connect up the CB.ProbeUuid (bnc#1012382). - afs: Fix afs_kill_pages() (bnc#1012382). - afs: Fix missing put_page() (bnc#1012382). - afs: Fix page leak in afs_write_begin() (bnc#1012382). - afs: Fix the maths in afs_fs_store_data() (bnc#1012382). - afs: Flush outstanding writes when an fd is closed (bnc#1012382). - afs: Migrate vlocation fields to 64-bit (bnc#1012382). - afs: Populate and use client modification time (bnc#1012382). - afs: Populate group ID from vnode status (bnc#1012382). - afs: Prevent callback expiry timer overflow (bnc#1012382). - alpha: fix build failures (bnc#1012382). - alsa: aloop: Fix inconsistent format due to incomplete rule (bsc#1031717). - alsa: aloop: Fix racy hw constraints adjustment (bsc#1031717). - alsa: aloop: Release cable upon open error path (bsc#1031717). - alsa: hda - Add HP ZBook 15u G3 Conexant CX20724 GPIO mute leds (bsc#1031717). - alsa: hda - Add MIC_NO_PRESENCE fixup for 2 HP machines (bsc#1031717). - alsa: hda - Add mute led support for HP EliteBook 840 G3 (bsc#1031717). - alsa: hda - Add mute led support for HP ProBook 440 G4 (bsc#1031717). - alsa: hda - Apply headphone noise quirk for another Dell XPS 13 variant (bsc#1031717). - alsa: hda - Apply the existing quirk to iMac 14,1 (bsc#1031717). - alsa: hda - Fix click noises on Samsung Ativ Book 8 (bsc#1031717). - alsa: hda - Fix headset microphone detection for ASUS N551 and N751 (bsc#1031717). - alsa: hda - Fix mic regression by ASRock mobo fixup (bsc#1031717). - alsa: hda - Fix missing COEF init for ALC225/295/299 (bsc#1031717). - alsa: hda - Fix surround output pins for ASRock B150M mobo (bsc#1031717). - alsa: hda - On-board speaker fixup on ACER Veriton (bsc#1031717). - alsa: hda - Skip Realtek SKU check for Lenovo machines (bsc#1031717). - alsa: hda - add support for docking station for HP 820 G2 (bsc#1031717). - alsa: hda - add support for docking station for HP 840 G3 (bsc#1031717). - alsa: hda - change the location for one mic on a Lenovo machine (bsc#1031717). - alsa: hda - fix headset mic detection issue on a Dell machine (bsc#1031717). - alsa: hda - fix headset mic problem for Dell machines with alc274 (bsc#1031717). - alsa: hda/realtek - ALC891 headset mode for Dell (bsc#1031717). - alsa: hda/realtek - Add ALC256 HP depop function (bsc#1031717). - alsa: hda/realtek - Add default procedure for suspend and resume state (bsc#1031717). - alsa: hda/realtek - Add support for ALC1220 (bsc#1031717). - alsa: hda/realtek - Add support for Acer Aspire E5-475 headset mic (bsc#1031717). - alsa: hda/realtek - Add support for headset MIC for ALC622 (bsc#1031717). - alsa: hda/realtek - Enable jack detection function for Intel ALC700 (bsc#1031717). - alsa: hda/realtek - Fix ALC275 no sound issue (bsc#1031717). - alsa: hda/realtek - Fix Dell AIO LineOut issue (bsc#1031717). - alsa: hda/realtek - Fix headset and mic on several Asus laptops with ALC256 (bsc#1031717). - alsa: hda/realtek - Fix headset mic and speaker on Asus X441SA/X441UV (bsc#1031717). - alsa: hda/realtek - Fix headset mic on several Asus laptops with ALC255 (bsc#1031717). - alsa: hda/realtek - Fix pincfg for Dell XPS 13 9370 (bsc#1031717). - alsa: hda/realtek - Fix speaker support for Asus AiO ZN270IE (bsc#1031717). - alsa: hda/realtek - Fix typo of pincfg for Dell quirk (bsc#1031717). - alsa: hda/realtek - New codec device ID for ALC1220 (bsc#1031717). - alsa: hda/realtek - New codec support for ALC257 (bsc#1031717). - alsa: hda/realtek - New codec support of ALC1220 (bsc#1031717). - alsa: hda/realtek - New codecs support for ALC215/ALC285/ALC289 (bsc#1031717). - alsa: hda/realtek - No loopback on ALC225/ALC295 codec (bsc#1031717). - alsa: hda/realtek - Remove ALC285 device ID (bsc#1031717). - alsa: hda/realtek - Support Dell headset mode for ALC3271 (bsc#1031717). - alsa: hda/realtek - Support headset mode for ALC234/ALC274/ALC294 (bsc#1031717). - alsa: hda/realtek - There is no loopback mixer in the ALC234/274/294 (bsc#1031717). - alsa: hda/realtek - Update headset mode for ALC225 (bsc#1031717). - alsa: hda/realtek - Update headset mode for ALC298 (bsc#1031717). - alsa: hda/realtek - change the location for one of two front microphones (bsc#1031717). - alsa: hda/realtek - fix headset mic detection for MSI MS-B120 (bsc#1031717). - alsa: hda: Drop useless WARN_ON() (bsc#1031717). - alsa: pcm: Abort properly at pending signal in OSS read/write loops (bsc#1031717). - alsa: pcm: Add missing error checks in OSS emulation plugin builder (bsc#1031717). - alsa: pcm: Allow aborting mutex lock at OSS read/write loops (bsc#1031717). - alsa: pcm: Remove incorrect snd_BUG_ON() usages (bsc#1031717). - alsa: pcm: Remove yet superfluous WARN_ON() (bsc#1031717). - alsa: pcm: prevent UAF in snd_pcm_info (bsc#1031717). - alsa: rawmidi: Avoid racy info ioctl via ctl device (bsc#1031717). - alsa: seq: Remove spurious WARN_ON() at timer check (bsc#1031717). - alsa: usb-audio: Add check return value for usb_string() (bsc#1031717). - alsa: usb-audio: Fix out-of-bound error (bsc#1031717). - alsa: usb-audio: Fix the missing ctl name suffix at parsing SU (bsc#1031717). - arm-ccn: perf: Prevent module unload while PMU is in use (bnc#1012382). - arm64/cpufeature: do not use mutex in bringup path (bsc#1068032). - arm64: Add hypervisor safe helper for checking constant capabilities (bsc#1068032). - arm64: Add macros to read/write system registers (bsc#1068032). - arm64: Add skeleton to harden the branch predictor against aliasing attacks (bsc#1068032). - arm64: Add trace_hardirqs_off annotation in ret_to_user (bsc#1068032). - arm64: Disable TTBR0_EL1 during normal kernel execution (bsc#1068032). - arm64: Disable kpti for non broadcast TLB HW (bsc#1068032). - arm64: Enable CONFIG_ARM64_SW_TTBR0_PAN (bsc#1068032). - arm64: Factor out PAN enabling/disabling into separate uaccess_* macros (bsc#1068032). - arm64: Factor out TTBR0_EL1 post-update workaround into a specific asm macro (bsc#1068032). - arm64: Fix circular include of asm/lse.h through linux/jump_label.h (bsc#1068032). - arm64: Fix compilation (bsc#1068032). - arm64: Handle el1 synchronous instruction aborts cleanly (bsc#1068032). - arm64: Implement branch predictor hardening for affected Cortex-A CPUs (bsc#1068032). - arm64: Initialise high_memory global variable earlier (bnc#1012382). - arm64: Introduce uaccess_{disable,enable} functionality based on TTBR0_EL1 (bsc#1068032). - arm64: Kconfig: Add CONFIG_UNMAP_KERNEL_AT_EL0 (bsc#1068032). - arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry (bsc#1068032). - arm64: Mask all exceptions during kernel_exit (bsc#1068032). - arm64: Move BP hardening to check_and_switch_context (bsc#1068032). - arm64: Move post_ttbr_update_workaround to C code (bsc#1068032). - arm64: Move the async/fiq helpers to explicitly set process context flags (bsc#1068032). - arm64: SW PAN: Point saved ttbr0 at the zero page when switching to init_mm (bsc#1068032). - arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb (bsc#1068032). - arm64: Store struct thread_info in sp_el0 (bsc#1068032). - arm64: Take into account ID_AA64PFR0_EL1.CSV3 (bsc#1068032). - arm64: Use static keys for CPU features (bsc#1068032). - arm64: add macro to extract ESR_ELx.EC (bsc#1068032). - arm64: alternative: add auto-nop infrastructure (bsc#1068032). - arm64: barriers: introduce nops and __nops macros for NOP sequences (bsc#1068032). - arm64: cpu_errata: Allow an erratum to be match for all revisions of a core (bsc#1068032). - arm64: cpufeature: Add scope for capability check (bsc#1068032). - arm64: cpufeature: Pass capability structure to ->enable callback (bsc#1068032). - arm64: debug: remove unused local_dbg_{enable, disable} macros (bsc#1068032). - arm64: do not pull uaccess.h into *.S (bsc#1068032). - arm64: entry.S convert el0_sync (bsc#1068032). - arm64: entry.S: Remove disable_dbg (bsc#1068032). - arm64: entry.S: convert el1_sync (bsc#1068032). - arm64: entry.S: convert elX_irq (bsc#1068032). - arm64: entry.S: move SError handling into a C function for future expansion (bsc#1068032). - arm64: entry: Add exception trampoline page for exceptions from EL0 (bsc#1068032). - arm64: entry: Add fake CPU feature for unmapping the kernel at EL0 (bsc#1068032). - arm64: entry: Explicitly pass exception level to kernel_ventry macro (bsc#1068032). - arm64: entry: Hook up entry trampoline to exception vectors (bsc#1068032). - arm64: entry: remove pointless SPSR mode check (bsc#1068032). - arm64: explicitly mask all exceptions (bsc#1068032). - arm64: factor out PAGE_* and CONT_* definitions (bsc#1068032). - arm64: factor out entry stack manipulation (bsc#1068032). - arm64: factor work_pending state machine to C (bsc#1068032). - arm64: fpsimd: Prevent registers leaking from dead tasks (bnc#1012382). - arm64: head.S: get rid of x25 and x26 with 'global' scope (bsc#1068032). - arm64: introduce an order for exceptions (bsc#1068032). - arm64: introduce mov_q macro to move a constant into a 64-bit register (bsc#1068032). - arm64: kaslr: Put kernel vectors address in separate data page (bsc#1068032). - arm64: kill ESR_LNX_EXEC (bsc#1068032). - arm64: kpti: Fix the interaction between ASID switching and software PAN (bsc#1068032). - arm64: kvm: Fix SMCCC handling of unimplemented SMC/HVC calls (bnc#1012382). - arm64: kvm: Survive unknown traps from guests (bnc#1012382). - arm64: kvm: Use per-CPU vector when BP hardening is enabled (bsc#1068032). - arm64: kvm: fix VTTBR_BADDR_MASK BUG_ON off-by-one (bnc#1012382). - arm64: mm: Add arm64_kernel_unmapped_at_el0 helper (bsc#1068032). - arm64: mm: Allocate ASIDs in pairs (bsc#1068032). - arm64: mm: Fix and re-enable ARM64_SW_TTBR0_PAN (bsc#1068032). - arm64: mm: Introduce TTBR_ASID_MASK for getting at the ASID in the TTBR (bsc#1068032). - arm64: mm: Invalidate both kernel and user ASIDs when performing TLBI (bsc#1068032). - arm64: mm: Map entry trampoline into trampoline and kernel page tables (bsc#1068032). - arm64: mm: Move ASID from TTBR0 to TTBR1 (bsc#1068032). - arm64: mm: Rename post_ttbr0_update_workaround (bsc#1068032). - arm64: mm: Temporarily disable ARM64_SW_TTBR0_PAN (bsc#1068032). - arm64: mm: Use non-global mappings for kernel space (bsc#1068032). - arm64: mm: hardcode rodata=true (bsc#1068032). - arm64: swp emulation: bound LL/SC retries before rescheduling (bsc#1068032). - arm64: sysreg: Fix unprotected macro argmuent in write_sysreg (bsc#1068032). - arm64: sysreg: allow write_sysreg to use XZR (bsc#1068032). - arm64: tlbflush.h: add __tlbi() macro (bsc#1068032). - arm64: tls: Avoid unconditional zeroing of tpidrro_el0 for native tasks (bsc#1068032). - arm64: use RET instruction for exiting the trampoline (bsc#1068032). - arm64: use alternative auto-nop (bsc#1068032). - arm64: xen: Enable user access before a privcmd hvc call (bsc#1068032). - arm: BUG if jumping to usermode address in kernel mode (bnc#1012382). - arm: OMAP1: DMA: Correct the number of logical channels (bnc#1012382). - arm: OMAP2+: Fix device node reference counts (bnc#1012382). - arm: OMAP2+: Release device node after it is no longer needed (bnc#1012382). - arm: OMAP2+: gpmc-onenand: propagate error on initialization failure (bnc#1012382). - arm: avoid faulting on qemu (bnc#1012382). - arm: dma-mapping: disallow dma_get_sgtable() for non-kernel managed memory (bnc#1012382). - arm: dts: am335x-evmsk: adjust mmc2 param to allow suspend (bnc#1012382). - arm: dts: kirkwood: fix pin-muxing of MPP7 on OpenBlocks A7 (bnc#1012382). - arm: dts: omap3: logicpd-torpedo-37xx-devkit: Fix MMC1 cd-gpio (bnc#1012382). - arm: dts: ti: fix PCI bus dtc warnings (bnc#1012382). - arm: kprobes: Align stack to 8-bytes in test code (bnc#1012382). - arm: kprobes: Fix the return address of multiple kretprobes (bnc#1012382). - arm: kvm: Fix VTTBR_BADDR_MASK BUG_ON off-by-one (bnc#1012382). - arm: kvm: Survive unknown traps from guests (bnc#1012382). - asm-prototypes: Clear any CPP defines before declaring the functions (git-fixes). - asn.1: check for error from ASN1_OP_END__ACT actions (bnc#1012382). - asn.1: fix out-of-bounds read when parsing indefinite length item (bnc#1012382). - asoc: fsl_ssi: AC'97 ops need regmap, clock and cleaning up on failure (bsc#1031717). - asoc: twl4030: fix child-node lookup (bsc#1031717). - asoc: wm_adsp: Fix validation of firmware and coeff lengths (bsc#1031717). - ath9k: fix tx99 potential info leak (bnc#1012382). - atm: horizon: Fix irq release error (bnc#1012382). - audit: ensure that 'audit=1' actually enables audit for PID 1 (bnc#1012382). - axonram: Fix gendisk handling (bnc#1012382). - backlight: pwm_bl: Fix overflow condition (bnc#1012382). - bcache.txt: standardize document format (bsc#1076110). - bcache: Avoid nested function definition (bsc#1076110). - bcache: Do not reinvent the wheel but use existing llist API (bsc#1076110). - bcache: Fix building error on MIPS (bnc#1012382). - bcache: Remove deprecated create_workqueue (bsc#1076110). - bcache: Remove redundant block_size assignment (bsc#1076110). - bcache: Remove redundant parameter for cache_alloc() (bsc#1076110). - bcache: Remove redundant set_capacity (bsc#1076110). - bcache: Update continue_at() documentation (bsc#1076110). - bcache: add a comment in journal bucket reading (bsc#1076110). - bcache: check return value of register_shrinker (bsc#1076110). - bcache: debug: avoid accessing .bi_io_vec directly (bsc#1076110). - bcache: do not write back data if reading it failed (bsc#1076110). - bcache: documentation formatting, edited for clarity, stripe alignment notes (bsc#1076110). - bcache: documentation updates and corrections (bsc#1076110). - bcache: explicitly destroy mutex while exiting (bnc#1012382). - bcache: fix a comments typo in bch_alloc_sectors() (bsc#1076110). - bcache: fix sequential large write IO bypass (bsc#1076110). - bcache: fix wrong cache_misses statistics (bnc#1012382). - bcache: gc does not work when triggering by manual command (bsc#1076110, bsc#1038078). - bcache: implement PI controller for writeback rate (bsc#1076110). - bcache: increase the number of open buckets (bsc#1076110). - bcache: only permit to recovery read error when cache device is clean (bnc#1012382 bsc#1043652). - bcache: partition support: add 16 minors per bcacheN device (bsc#1076110). - bcache: pr_err: more meaningful error message when nr_stripes is invalid (bsc#1076110). - bcache: rearrange writeback main thread ratelimit (bsc#1076110). - bcache: recover data from backing when data is clean (bnc#1012382 bsc#1043652). - bcache: register_bcache(): call blkdev_put() when cache_alloc() fails (bsc#1076110). - bcache: remove unused parameter (bsc#1076110). - bcache: rewrite multiple partitions support (bsc#1076110, bsc#1038085, bsc#1019784). - bcache: safeguard a dangerous addressing in closure_queue (bsc#1076110). - bcache: silence static checker warning (bsc#1076110). - bcache: smooth writeback rate control (bsc#1076110). - bcache: switch to using blk_queue_write_cache() (bsc#1076110). - bcache: update bio->bi_opf bypass/writeback REQ_ flag hints (bsc#1076110). - bcache: update bucket_in_use in real time (bsc#1076110). - bcache: update document info (bsc#1076110). - bcache: use kmalloc to allocate bio in bch_data_verify() (bsc#1076110). - bcache: use llist_for_each_entry_safe() in __closure_wake_up() (bsc#1076110). - bcache: writeback rate clamping: make 32 bit safe (bsc#1076110). - bcache: writeback rate shouldn't artifically clamp (bsc#1076110). - be2net: restore properly promisc mode after queues reconfiguration (bsc#963844). - block: export bio_free_pages to other modules (bsc#1076110). - block: wake up all tasks blocked in get_request() (bnc#1012382). - bluetooth: btusb: driver to enable the usb-wakeup feature (bnc#1012382). - bnx2x: do not rollback VF MAC/VLAN filters we did not configure (bnc#1012382). - bnx2x: fix possible overrun of VFPF multicast addresses array (bnc#1012382). - bnx2x: prevent crash when accessing PTP with interface down (bnc#1012382). - btrfs: account for pinned bytes in should_alloc_chunk (bsc#1066842). - btrfs: add missing memset while reading compressed inline extents (bnc#1012382). - btrfs: clear space cache inode generation always (bnc#1012382). - can: af_can: can_rcv(): replace WARN_ONCE by pr_warn_once (bnc#1012382). - can: af_can: canfd_rcv(): replace WARN_ONCE by pr_warn_once (bnc#1012382). - can: ems_usb: cancel urb on -EPIPE and -EPROTO (bnc#1012382). - can: esd_usb2: cancel urb on -EPIPE and -EPROTO (bnc#1012382). - can: gs_usb: fix return value of the 'set_bittiming' callback (bnc#1012382). - can: kvaser_usb: Fix comparison bug in kvaser_usb_read_bulk_callback() (bnc#1012382). - can: kvaser_usb: cancel urb on -EPIPE and -EPROTO (bnc#1012382). - can: kvaser_usb: free buf in error paths (bnc#1012382). - can: kvaser_usb: ratelimit errors if incomplete messages are received (bnc#1012382). - can: peak: fix potential bug in packet fragmentation (bnc#1012382). - can: ti_hecc: Fix napi poll return value for repoll (bnc#1012382). - can: usb_8dev: cancel urb on -EPIPE and -EPROTO (bnc#1012382). - cdc-acm: apply quirk for card reader (bsc#1060279). - cdrom: factor out common open_for_* code (bsc#1048585). - cdrom: wait for tray to close (bsc#1048585). - ceph: drop negative child dentries before try pruning inode's alias (bnc#1012382). - ceph: more accurate statfs (bsc#1077068). - clk: imx6: refine hdmi_isfr's parent to make HDMI work on i.MX6 SoCs w/o VPU (bnc#1012382). - clk: mediatek: add the option for determining PLL source clock (bnc#1012382). - clk: tegra: Fix cclk_lp divisor register (bnc#1012382). - cpuidle: Validate cpu_dev in cpuidle_add_sysfs() (bnc#1012382). - cpuidle: fix broadcast control when broadcast can not be entered (bnc#1012382). - cpuidle: powernv: Pass correct drv->cpumask for registration (bnc#1012382). - crypto: algapi - fix NULL dereference in crypto_remove_spawns() (bnc#1012382). - crypto: chacha20poly1305 - validate the digest size (bnc#1012382). - crypto: crypto4xx - increase context and scatter ring buffer elements (bnc#1012382). - crypto: deadlock between crypto_alg_sem/rtnl_mutex/genl_mutex (bnc#1012382). - crypto: mcryptd - protect the per-CPU queue with a lock (bnc#1012382). - crypto: n2 - cure use after free (bnc#1012382). - crypto: pcrypt - fix freeing pcrypt instances (bnc#1012382). - crypto: s5p-sss - Fix completing crypto request in IRQ handler (bnc#1012382). - crypto: tcrypt - fix buffer lengths in test_aead_speed() (bnc#1012382). - cxl: Check if vphb exists before iterating over AFU devices (bsc#1066223). - dax: Pass detailed error code from __dax_fault() (bsc#1072484). - dccp: don't restart ccid2_hc_tx_rto_expire() if sk in closed state (bnc#1012382). - delay: add poll_event_interruptible (bsc#1048585). - dm btree: fix serious bug in btree_split_beneath() (bnc#1012382). - dm bufio: fix shrinker scans when (nr_to_scan < retain_target) (bnc#1012382). - dm thin metadata: THIN_MAX_CONCURRENT_LOCKS should be 6 (bnc#1012382). - dmaengine: Fix array index out of bounds warning in __get_unmap_pool() (bnc#1012382). - dmaengine: dmatest: move callback wait queue to thread context (bnc#1012382). - dmaengine: pl330: fix double lock (bnc#1012382). - dmaengine: ti-dma-crossbar: Correct am335x/am43xx mux value type (bnc#1012382). - drivers/firmware: Expose psci_get_version through psci_ops structure (bsc#1068032). - drivers/md/bcache/util.h: remove duplicate inclusion of blkdev.h (bsc#1076110). - drivers: base: cacheinfo: fix boot error message when acpi is enabled (bnc#1012382). - drivers: base: cacheinfo: fix x86 with CONFIG_OF enabled (bnc#1012382). - drivers: net: xgene: Fix hardware checksum setting (bsc#1078526). - drm/amd/amdgpu: fix console deadlock if late init failed (bnc#1012382). - drm/exynos/decon5433: set STANDALONE_UPDATE_F on output enablement (bnc#1012382). - drm/exynos: gem: Drop NONCONTIG flag for buffers allocated without IOMMU (bnc#1012382). - drm/omap: fix dmabuf mmap for dma_alloc'ed buffers (bnc#1012382). - drm/radeon/si: add dpm quirk for Oland (bnc#1012382). - drm/radeon: fix atombios on big endian (bnc#1012382). - drm/radeon: reinstate oland workaround for sclk (bnc#1012382). - drm/vmwgfx: Potential off by one in vmw_view_add() (bnc#1012382). - drm: extra printk() wrapper macros (bnc#1012382). - dynamic-debug-howto: fix optional/omitted ending line number to be LARGE instead of 0 (bnc#1012382). - edac, i5000, i5400: Fix definition of NRECMEMB register (bnc#1012382). - edac, i5000, i5400: Fix use of MTR_DRAM_WIDTH macro (bnc#1012382). - edac, sb_edac: Fix missing break in switch (bnc#1012382). - eeprom: at24: check at24_read/write arguments (bnc#1012382). - efi/esrt: Cleanup bad memory map log messages (bnc#1012382). - efi: Move some sysfs files to be read-only by root (bnc#1012382). - eventpoll.h: add missing epoll event masks (bnc#1012382). - ext4: Fix ENOSPC handling in DAX page fault handle (bsc#1072484). - ext4: fix crash when a directory's i_size is too small (bnc#1012382). - ext4: fix fdatasync(2) after fallocate(2) operation (bnc#1012382). - fbdev: controlfb: Add missing modes to fix out of bounds access (bnc#1012382). - fjes: Fix wrong netdevice feature flags (bnc#1012382). - flow_dissector: properly cap thoff field (bnc#1012382). - fm10k: ensure we process SM mbx when processing VF mbx (bnc#1012382). - fork: clear thread stack upon allocation (bsc#1077560). Conflicts: series.conf - fscache: Fix the default for fscache_maybe_release_page() (bnc#1012382). - futex: Prevent overflow by strengthen input validation (bnc#1012382). - gcov: disable for COMPILE_TEST (bnc#1012382). - gfs2: Take inode off order_write list when setting jdata flag (bnc#1012382). - gpio: altera: Use handle_level_irq when configured as a level_high (bnc#1012382). - hid: chicony: Add support for another ASUS Zen AiO keyboard (bnc#1012382). - hid: xinmo: fix for out of range for THT 2P arcade controller (bnc#1012382). - hrtimer: Reset hrtimer cpu base proper on CPU hotplug (bnc#1012382). - hv: kvp: Avoid reading past allocated blocks from KVP file (bnc#1012382). - hwmon: (asus_atk0110) fix uninitialized data access (bnc#1012382). - i40e: Do not enable NAPI on q_vectors that have no rings (bnc#1012382). - ib/hfi1: Correct defered count after processing qp_wait_list (git-fixes). - ib/hfi1: Fix rnr_timer addition (git-fixes). - ib/hfi1: Handle kzalloc failure in init_pervl_scs (git-fixes). - ib/hfi1: Move iowait_init() to priv allocate (git-fixes). - ib/hfi1: Prevent kernel QP post send hard lockups (git-fixes). - ib/hfi1: Reset QSFP on every run through channel tuning (git-fixes). - ib/ipoib: Fix lockdep issue found on ipoib_ib_dev_heavy_flush (git-fixes). - ib/ipoib: Grab rtnl lock on heavy flush when calling ndo_open/stop (bnc#1012382). - ib/mlx4: Increase maximal message size under UD QP (bnc#1012382). - ib/mlx5: Assign send CQ and recv CQ of UMR QP (bnc#1012382). - ib/qib: Remove qpt_mask global (git-fixes). - ib/rdmavt: restore IRQs on error path in rvt_create_ah() (git-fixes). - ib/srpt: Disable RDMA access by the initiator (bnc#1012382). - ibmvnic: Allocate and request vpd in init_resources (bsc#1076872). - ibmvnic: Do not handle RX interrupts when not up (bsc#1075066). - ibmvnic: Fix IP offload control buffer (bsc#1076899). - ibmvnic: Fix IPv6 packet descriptors (bsc#1076899). - ibmvnic: Fix pending MAC address changes (bsc#1075627). - ibmvnic: Modify buffer size and number of queues on failover (bsc#1076872). - ibmvnic: Revert to previous mtu when unsupported value requested (bsc#1076872). - ibmvnic: Wait for device response when changing MAC (bsc#1078681). - igb: check memory allocation failure (bnc#1012382). - ima: fix hash algorithm initialization (bnc#1012382). - inet: frag: release spinlock before calling icmp_send() (bnc#1012382). - input: 88pm860x-ts - fix child-node lookup (bnc#1012382). - input: elantech - add new icbody type 15 (bnc#1012382). - input: i8042 - add TUXEDO BU1406 (N24_25BU) to the nomux list (bnc#1012382). - input: twl4030-vibra - fix sibling-node lookup (bnc#1012382). - input: twl6040-vibra - fix DT node memory management (bnc#1012382). - input: twl6040-vibra - fix child-node lookup (bnc#1012382). - intel_th: pci: Add Gemini Lake support (bnc#1012382). - iommu/arm-smmu-v3: Do not free page table ops twice (bnc#1012382). - iommu/vt-d: Fix scatterlist offset handling (bnc#1012382). - ip6_tunnel: disable dst caching if tunnel is dual-stack (bnc#1012382). - ipmi: Stop timers before cleaning up the module (bnc#1012382). - ipv4: Fix use-after-free when flushing FIB tables (bnc#1012382). - ipv4: Make neigh lookup keys for loopback/point-to-point devices be INADDR_ANY (bnc#1012382). - ipv4: igmp: guard against silly MTU values (bnc#1012382). - ipv6: Fix getsockopt() for sockets with default IPV6_AUTOFLOWLABEL (bnc#1012382). - ipv6: fix possible mem leaks in ipv6_make_skb() (bnc#1012382). - ipv6: fix udpv6 sendmsg crash caused by too small MTU (bnc#1012382). - ipv6: ip6_make_skb() needs to clear cork.base.dst (git-fixes). - ipv6: mcast: better catch silly mtu values (bnc#1012382). - ipv6: reorder icmpv6_init() and ip6_mr_init() (bnc#1012382). - ipvlan: fix ipv6 outbound device (bnc#1012382). - ipvlan: remove excessive packet scrubbing (bsc#1070799). - irda: vlsi_ir: fix check for DMA mapping errors (bnc#1012382). - irqchip/crossbar: Fix incorrect type of register size (bnc#1012382). - iscsi-target: Make TASK_REASSIGN use proper se_cmd->cmd_kref (bnc#1012382). - iscsi-target: fix memory leak in lio_target_tiqn_addtpg() (bnc#1012382). - isdn: kcapi: avoid uninitialized data (bnc#1012382). - iw_cxgb4: Only validate the MSN for successful completions (bnc#1012382). - ixgbe: fix use of uninitialized padding (bnc#1012382). - jump_label: Invoke jump_label_test() via early_initcall() (bnc#1012382). - jump_label: Make it possible for arches to invoke jump_label_init() earlier (bsc#1068032). - jump_labels: Allow array initialisers (bsc#1068032). - kABI: protect struct bpf_map (kabi). - kABI: protect struct ipv6_pinfo (kabi). - kABI: protect struct t10_alua_tg_pt_gp (kabi). - kabi fix for new hash_cred function (bsc#1012917). - kabi/severities: do not care about stuff_RSB - kaiser: Set _PAGE_NX only if supported (bnc#1012382). - kaiser: Set _PAGE_NX only if supported (bnc#1012382). - kbuild: add '-fno-stack-check' to kernel build options (bnc#1012382). - kbuild: modversions for EXPORT_SYMBOL() for asm (bsc#1074621 bsc#1068032). - kbuild: pkg: use --transform option to prefix paths in tar (bnc#1012382). - kdb: Fix handling of kallsyms_symbol_next() return value (bnc#1012382). - kernel/acct.c: fix the acct->needcheck check in check_free_space() (bnc#1012382). - kernel/signal.c: protect the SIGNAL_UNKILLABLE tasks from !sig_kernel_only() signals (bnc#1012382). - kernel/signal.c: protect the traced SIGNAL_UNKILLABLE tasks from SIGKILL (bnc#1012382). - kernel/signal.c: remove the no longer needed SIGNAL_UNKILLABLE check in complete_signal() (bnc#1012382). - kernel: make groups_sort calling a responsibility group_info allocators (bnc#1012382). - keys: add missing permission check for request_key() destination (bnc#1012382). - kprobes/x86: Disable preemption in ftrace-based jprobes (bnc#1012382). - kpti: Rename to PAGE_TABLE_ISOLATION (bnc#1012382). - kpti: Report when enabled (bnc#1012382). - kvm: Fix stack-out-of-bounds read in write_mmio (bnc#1012382). - kvm: VMX: Fix enable VPID conditions (bnc#1012382). - kvm: VMX: remove I/O port 0x80 bypass on Intel hosts (bnc#1012382). - kvm: X86: Fix load RFLAGS w/o the fixed bit (bnc#1012382). - kvm: arm/arm64: Fix occasional warning from the timer work function (bnc#1012382 bsc#988524). - kvm: nVMX: VMCLEAR should not cause the vCPU to shut down (bnc#1012382). - kvm: nVMX: reset nested_run_pending if the vCPU is going to be reset (bnc#1012382). - kvm: pci-assign: do not map smm memory slot pages in vt-d page tables (bnc#1012382). - kvm: s390: wire up bpb feature (bsc#1076806). - kvm: vmx: Scrub hardware GPRs at VM-exit (bnc#1012382). - kvm: x86: Add memory barrier on vmcs field lookup (bnc#1012382). - kvm: x86: Exit to user-mode on #UD intercept when emulator requires (bnc#1012382). - kvm: x86: correct async page present tracepoint (bnc#1012382). - kvm: x86: fix RSM when PCID is non-zero (bnc#1012382). - kvm: x86: inject exceptions produced by x86_decode_insn (bnc#1012382). - kvm: x86: pvclock: Handle first-time write to pvclock-page contains random junk (bnc#1012382). - l2tp: cleanup l2tp_tunnel_delete calls (bnc#1012382). - lan78xx: Fix failure in USB Full Speed (bnc#1012382). - lib/genalloc.c: make the avail variable an atomic_long_t (bnc#1012382). - libata: apply MAX_SEC_1024 to all LITEON EP1 series devices (bnc#1012382). - libata: drop WARN from protocol error in ata_sff_qc_issue() (bnc#1012382). - macvlan: Only deliver one copy of the frame to the macvlan interface (bnc#1012382). - md-cluster: free md_cluster_info if node leave cluster (bnc#1012382). - media: dvb: i2c transfers over usb cannot be done from stack (bnc#1012382). - mfd: cros ec: spi: Do not send first message too soon (bnc#1012382). - mfd: twl4030-audio: Fix sibling-node lookup (bnc#1012382). - mfd: twl6040: Fix child-node lookup (bnc#1012382). - mlxsw: reg: Fix SPVM max record count (bnc#1012382). - mlxsw: reg: Fix SPVMLR max record count (bnc#1012382). - mm/mmap.c: do not blow on PROT_NONE MAP_FIXED holes in the stack (bnc#1012382). - mm/vmstat: Make NR_TLB_REMOTE_FLUSH_RECEIVED available even on UP (bnc#1012382). - mm: Handle 0 flags in _calc_vm_trans() macro (bnc#1012382). - mm: Introduce lm_alias (bsc#1068032). - mm: avoid returning VM_FAULT_RETRY from ->page_mkwrite handlers (bnc#1012382). - mm: drop unused pmdp_huge_get_and_clear_notify() (bnc#1012382). - mmc: core: Do not leave the block driver in a suspended state (bnc#1012382). - mmc: mediatek: Fixed bug where clock frequency could be set wrong (bnc#1012382). - module: set __jump_table alignment to 8 (bnc#1012382). - more bio_map_user_iov() leak fixes (bnc#1012382). - mtd: nand: Fix writing mtdoops to nand flash (bnc#1012382). - n_tty: fix EXTPROC vs ICANON interaction with TIOCINQ (aka FIONREAD) (bnc#1012382). - net/appletalk: Fix kernel memory disclosure (bnc#1012382). - net/mac80211/debugfs.c: prevent build failure with CONFIG_UBSAN=y (bnc#1012382). - net/packet: fix a race in packet_bind() and packet_notifier() (bnc#1012382). - net: Allow neigh contructor functions ability to modify the primary_key (bnc#1012382). - net: Do not allow negative values for busy_read and busy_poll sysctl interfaces (bnc#1012382). - net: Fix double free and memory corruption in get_net_ns_by_id() (bnc#1012382). - net: Resend IGMP memberships upon peer notification (bnc#1012382). - net: bcmgenet: Power up the internal PHY before probing the MII (bnc#1012382). - net: bcmgenet: correct MIB access of UniMAC RUNT counters (bnc#1012382). - net: bcmgenet: correct the RBUF_OVFL_CNT and RBUF_ERR_CNT MIB values (bnc#1012382). - net: bcmgenet: power down internal phy if open or resume fails (bnc#1012382). - net: bcmgenet: reserved phy revisions must be checked first (bnc#1012382). - net: bridge: fix early call to br_stp_change_bridge_id and plug newlink leaks (bnc#1012382). - net: core: fix module type in sock_diag_bind (bnc#1012382). - net: fec: fix multicast filtering hardware setup (bnc#1012382). - net: igmp: Use correct source address on IGMPv3 reports (bnc#1012382). - net: igmp: fix source address check for IGMPv3 reports (bnc#1012382). - net: initialize msg.msg_flags in recvfrom (bnc#1012382). - net: ipv4: fix for a race condition in raw_sendmsg (bnc#1012382). - net: mvmdio: disable/unprepare clocks in EPROBE_DEFER case (bnc#1012382). - net: mvneta: clear interface link status on port disable (bnc#1012382). - net: phy: at803x: Change error to EINVAL for invalid MAC (bnc#1012382). - net: phy: micrel: ksz9031: reconfigure autoneg after phy autoneg workaround (bnc#1012382). - net: qdisc_pkt_len_init() should be more robust (bnc#1012382). - net: qmi_wwan: Add USB IDs for MDM6600 modem on Motorola Droid 4 (bnc#1012382). - net: qmi_wwan: add Sierra EM7565 1199:9091 (bnc#1012382). - net: reevalulate autoflowlabel setting after sysctl setting (bnc#1012382). - net: sctp: fix array overrun read on sctp_timer_tbl (bnc#1012382). - net: stmmac: enable EEE in MII, GMII or RGMII only (bnc#1012382). - net: systemport: Pad packet before inserting TSB (bnc#1012382). - net: systemport: Utilize skb_put_padto() (bnc#1012382). - net: tcp: close sock if net namespace is exiting (bnc#1012382). - net: wimax/i2400m: fix NULL-deref at probe (bnc#1012382). - netfilter: bridge: honor frag_max_size when refragmenting (bnc#1012382). - netfilter: do not track fragmented packets (bnc#1012382). - netfilter: ipvs: Fix inappropriate output of procfs (bnc#1012382). - netfilter: nfnetlink_queue: fix secctx memory leak (bnc#1012382). - netfilter: nfnetlink_queue: fix timestamp attribute (bsc#1074134). - netfilter: nfnl_cthelper: Fix memory leak (bnc#1012382). - netfilter: nfnl_cthelper: fix a race when walk the nf_ct_helper_hash table (bnc#1012382). - netfilter: nfnl_cthelper: fix runtime expectation policy updates (bnc#1012382). - netlink: add a start callback for starting a netlink dump (bnc#1012382). - nfs: Do not take a reference on fl->fl_file for LOCK operation (bnc#1012382). - nfs: Fix a typo in nfs_rename() (bnc#1012382). - nfs: improve shinking of access cache (bsc#1012917). - nfsd: Fix another OPEN stateid race (bnc#1012382). - nfsd: Fix stateid races between OPEN and CLOSE (bnc#1012382). - nfsd: Make init_open_stateid() a bit more whole (bnc#1012382). - nfsd: auth: Fix gid sorting when rootsquash enabled (bnc#1012382). - nfsd: fix nfsd_minorversion(.., NFSD_AVAIL) (bnc#1012382). - nfsd: fix nfsd_reset_versions for NFSv4 (bnc#1012382). - nfsv4.1 respect server's max size in CREATE_SESSION (bnc#1012382). - nfsv4: Fix client recovery when server reboots multiple times (bnc#1012382). - nohz: Prevent a timer interrupt storm in tick_nohz_stop_sched_tick() (bnc#1012382). - openrisc: fix issue handling 8 byte get_user calls (bnc#1012382). - packet: fix crash in fanout_demux_rollover() (bnc#1012382). - parisc: Fix alignment of pa_tlb_lock in assembly on 32-bit SMP kernel (bnc#1012382). - parisc: Hide Diva-built-in serial aux and graphics card (bnc#1012382). - partially revert tipc improve link resiliency when rps is activated (bsc#1068038). - pci / PM: Force devices to D0 in pci_pm_thaw_noirq() (bnc#1012382). - pci/AER: Report non-fatal errors only to the affected endpoint (bnc#1012382). - pci/PME: Handle invalid data when reading Root Status (bnc#1012382). - pci: Avoid bus reset if bridge itself is broken (bnc#1012382). - pci: Create SR-IOV virtfn/physfn links before attaching driver (bnc#1012382). - pci: Detach driver before procfs & sysfs teardown on device remove (bnc#1012382). - perf symbols: Fix symbols__fixup_end heuristic for corner cases (bnc#1012382). - perf test attr: Fix ignored test case result (bnc#1012382). - perf: xgene: Add support for SoC PMU version 3 (bsc#1076809). - perf: xgene: Include module.h (bsc#1076809). - perf: xgene: Move PMU leaf functions into function pointer structure (bsc#1076809). - perf: xgene: Parse PMU subnode from the match table (bsc#1076809). - perf: xgene: Remove unnecessary managed resources cleanup (bsc#1076809). - phy: work around 'phys' references to usb-nop-xceiv devices (bnc#1012382). - pinctrl: adi2: Fix Kconfig build problem (bnc#1012382). - pinctrl: st: add irq_request/release_resources callbacks (bnc#1012382). - pipe: avoid round_pipe_size() nr_pages overflow on 32-bit (bnc#1012382). - powerpc/64: Add macros for annotating the destination of rfid/hrfid (bsc#1068032, bsc#1075087). - powerpc/64: Convert fast_exception_return to use RFI_TO_USER/KERNEL (bsc#1068032, bsc#1075087). - powerpc/64: Convert the syscall exit path to use RFI_TO_USER/KERNEL (bsc#1068032, bsc#1075087). - powerpc/64s: Add EX_SIZE definition for paca exception save areas (bsc#1068032, bsc#1075087). - powerpc/64s: Add support for RFI flush of L1-D cache (bsc#1068032, bsc#1075087). - powerpc/64s: Allow control of RFI flush via debugfs (bsc#1068032, bsc#1075087). - powerpc/64s: Convert slb_miss_common to use RFI_TO_USER/KERNEL (bsc#1068032, bsc#1075087). - powerpc/64s: Simple RFI macro conversions (bsc#1068032, bsc#1075087). - powerpc/64s: Support disabling RFI flush with no_rfi_flush and nopti (bsc#1068032, bsc#1075087). - powerpc/64s: Wire up cpu_show_meltdown() (bsc#1068032). - powerpc/asm: Allow including ppc_asm.h in asm files (bsc#1068032, bsc#1075087). - powerpc/ipic: Fix status get and status clear (bnc#1012382). - powerpc/perf/hv-24x7: Fix incorrect comparison in memord (bnc#1012382). - powerpc/perf: Dereference BHRB entries safely (bsc#1066223). - powerpc/powernv/cpufreq: Fix the frequency read by /proc/cpuinfo (bnc#1012382). - powerpc/powernv/ioda2: Gracefully fail if too many TCE levels requested (bnc#1012382). - powerpc/powernv: Check device-tree for RFI flush settings (bsc#1068032, bsc#1075087). - powerpc/pseries/rfi-flush: Call setup_rfi_flush() after LPM migration (bsc#1068032, bsc#1075087). - powerpc/pseries: Introduce H_GET_CPU_CHARACTERISTICS (bsc#1068032, bsc#1075087). - powerpc/pseries: Query hypervisor for RFI flush settings (bsc#1068032, bsc#1075087). - powerpc/pseries: include linux/types.h in asm/hvcall.h (bsc#1068032, bsc#1075087). - powerpc/pseries: rfi-flush: Call setup_rfi_flush() after LPM migration (bsc#1068032, bsc#1075087). - powerpc/rfi-flush: Add DEBUG_RFI config option (bsc#1068032, bsc#1075087). - powerpc/rfi-flush: Make setup_rfi_flush() not __init (bsc#1068032, bsc#1075087). - powerpc/rfi-flush: Move RFI flush fields out of the paca (unbreak kABI) (bsc#1068032, bsc#1075087). - powerpc/rfi-flush: Move the logic to avoid a redo into the sysfs code (bsc#1068032, bsc#1075087). - powerpc/rfi-flush: prevent crash when changing flush type to fallback after system boot (bsc#1068032, bsc#1075087). - ppp: Destroy the mutex when cleanup (bnc#1012382). - pppoe: take ->needed_headroom of lower device into account on xmit (bnc#1012382). - pti: unbreak EFI (bsc#1074709). - r8152: fix the list rx_done may be used without initialization (bnc#1012382). - r8152: prevent the driver from transmitting packets with carrier off (bnc#1012382). - r8169: fix memory corruption on retrieval of hardware statistics (bnc#1012382). - raid5: Set R5_Expanded on parity devices as well as data (bnc#1012382). - ravb: Remove Rx overflow log messages (bnc#1012382). - rbd: set max_segments to USHRT_MAX (bnc#1012382). - rdma/cma: Avoid triggering undefined behavior (bnc#1012382). - rdma/iser: Fix possible mr leak on device removal event (bnc#1012382). - rds: Fix NULL pointer dereference in __rds_rdma_map (bnc#1012382). - rds: Heap OOB write in rds_message_alloc_sgs() (bnc#1012382). - rds: null pointer dereference in rds_atomic_free_op (bnc#1012382). - regulator: Try to resolve regulators supplies on registration (bsc#1074847). - regulator: core: Rely on regulator_dev_release to free constraints (bsc#1074847). - regulator: da9063: Return an error code on probe failure (bsc#1074847). - regulator: pwm: Fix regulator ramp delay for continuous mode (bsc#1074847). - rfi-flush: Make DEBUG_RFI a CONFIG option (bsc#1068032, bsc#1075087). - ring-buffer: Mask out the info bits when returning buffer page length (bnc#1012382). - route: also update fnhe_genid when updating a route cache (bnc#1012382). - route: update fnhe_expires for redirect when the fnhe exists (bnc#1012382). - rtc: cmos: Initialize hpet timer before irq is registered (bsc#1077592). - rtc: pcf8563: fix output clock rate (bnc#1012382). - rtc: pl031: make interrupt optional (bnc#1012382). - rtc: set the alarm to the next expiring timer (bnc#1012382). - s390/pci: do not require AIS facility (bnc#1012382). - s390/qeth: no ETH header for outbound AF_IUCV (bnc#1012382). - s390/runtime instrumentation: simplify task exit handling (bnc#1012382). - s390: always save and restore all registers on context switch (bnc#1012382). - s390: fix compat system call table (bnc#1012382). - sch_dsmark: fix invalid skb_cow() usage (bnc#1012382). - sched/deadline: Make sure the replenishment timer fires in the next period (bnc#1012382). - sched/deadline: Throttle a constrained deadline task activated after the deadline (bnc#1012382). - sched/deadline: Use deadline instead of period when calculating overflow (bnc#1012382). - sched/deadline: Use the revised wakeup rule for suspending constrained dl tasks (bnc#1012382). - sched/deadline: Zero out positive runtime after throttling constrained tasks (git-fixes). - sched/rt: Do not pull from current CPU if only one CPU to pull (bnc#1022476). - scsi: bfa: integer overflow in debugfs (bnc#1012382). - scsi: check for device state in __scsi_remove_target() (bsc#1072589). - scsi: cxgb4i: fix Tx skb leak (bnc#1012382). - scsi: fixup kernel warning during rmmod() (bsc#1052360). - scsi: hpsa: cleanup sas_phy structures in sysfs when unloading (bnc#1012382). - scsi: hpsa: destroy sas transport properties before scsi_host (bnc#1012382). - scsi: libsas: align sata_device's rps_resp on a cacheline (bnc#1012382). - scsi: lpfc: Fix PT2PT PRLI reject (bnc#1012382). - scsi: lpfc: Fix crash during Hardware error recovery on SLI3 adapters (bnc#1012382). - scsi: lpfc: Fix secure firmware updates (bnc#1012382). - scsi: lpfc: PLOGI failures during NPIV testing (bnc#1012382). - scsi: mpt3sas: Fix IO error occurs on pulling out a drive from RAID1 volume created on two SATA drive (bnc#1012382). - scsi: sd: change allow_restart to bool in sysfs interface (bnc#1012382). - scsi: sd: change manage_start_stop to bool in sysfs interface (bnc#1012382). - scsi: sg: disable SET_FORCE_LOW_DMA (bnc#1012382). - scsi: sr: wait for the medium to become ready (bsc#1048585). - sctp: Replace use of sockets_allocated with specified macro (bnc#1012382). - sctp: do not allow the v4 socket to bind a v4mapped v6 address (bnc#1012382). - sctp: do not free asoc when it is already dead in sctp_sendmsg (bnc#1012382). - sctp: return error if the asoc has been peeled off in sctp_wait_for_sndbuf (bnc#1012382). - sctp: use the right sk after waking up from wait_buf sleep (bnc#1012382). - selftest/powerpc: Fix false failures for skipped tests (bnc#1012382). - selftests/x86/ldt_get: Add a few additional tests for limits (bnc#1012382). - selftests/x86: Add test_vsyscall (bnc#1012382). - serial: 8250: Preserve DLD[7:4] for PORT_XR17V35X (bnc#1012382). - serial: 8250_pci: Add Amazon PCI serial device ID (bnc#1012382). - series.conf: fix wrong bsc reference - series.conf: whitespace cleanup - sfc: do not warn on successful change of MAC (bnc#1012382). - sh_eth: fix SH7757 GEther initialization (bnc#1012382). - sh_eth: fix TSU resource handling (bnc#1012382). - sit: update frag_off info (bnc#1012382). - sock: free skb in skb_complete_tx_timestamp on error (bnc#1012382). - sparc64/mm: set fields in deferred pages (bnc#1012382). - spi: sh-msiof: Fix DMA transfer size check (bnc#1012382). - spi: xilinx: Detect stall with Unknown commands (bnc#1012382). - spi_ks8995: fix 'BUG: key accdaa28 not in .data!' (bnc#1012382). - staging: android: ashmem: fix a race condition in ASHMEM_SET_SIZE ioctl (bnc#1012382). - sunrpc: Fix rpc_task_begin trace point (bnc#1012382). - sunrpc: add RPCSEC_GSS hash_cred() function (bsc#1012917). - sunrpc: add auth_unix hash_cred() function (bsc#1012917). - sunrpc: add generic_auth hash_cred() function (bsc#1012917). - sunrpc: add hash_cred() function to rpc_authops struct (bsc#1012917). - sunrpc: replace generic auth_cred hash with auth-specific function (bsc#1012917). - sunrpc: use supplimental groups in auth hash (bsc#1012917). - sunxi-rsb: Include OF based modalias in device uevent (bnc#1012382). - sysfs/cpu: Add vulnerability folder (bnc#1012382). - sysfs/cpu: Fix typos in vulnerability documentation (bnc#1012382). - sysfs: spectre_v2, handle spec_ctrl (bsc#1075994 bsc#1075091). - sysrq : fix Show Regs call trace on ARM (bnc#1012382). - target/file: Do not return error for UNMAP if length is zero (bnc#1012382). - target/iscsi: Fix a race condition in iscsit_add_reject_from_cmd() (bnc#1012382). - target: Avoid early CMD_T_PRE_EXECUTE failures during ABORT_TASK (bnc#1012382). - target: Use system workqueue for ALUA transitions (bnc#1012382). - target: fix ALUA transition timeout handling (bnc#1012382). - target: fix race during implicit transition work flushes (bnc#1012382). - target:fix condition return in core_pr_dump_initiator_port() (bnc#1012382). - tcp md5sig: Use skb's saddr when replying to an incoming segment (bnc#1012382). - tcp: __tcp_hdrlen() helper (bnc#1012382). - tcp: correct memory barrier usage in tcp_check_space() (bnc#1012382). - tcp: fix under-evaluated ssthresh in TCP Vegas (bnc#1012382). - tg3: Fix rx hang on MTU change with 5717/5719 (bnc#1012382). - thermal/drivers/step_wise: Fix temperature regulation misbehavior (bnc#1012382). - thermal: hisilicon: Handle return value of clk_prepare_enable (bnc#1012382). - tipc: fix cleanup at module unload (bnc#1012382). - tipc: fix memory leak in tipc_accept_from_sock() (bnc#1012382). - tipc: improve link resiliency when rps is activated (bsc#1068038). - tracing: Allocate mask_str buffer dynamically (bnc#1012382). - tracing: Fix converting enum's from the map in trace_event_eval_update() (bnc#1012382). - tracing: Fix crash when it fails to alloc ring buffer (bnc#1012382). - tracing: Fix possible double free on failure of allocating trace buffer (bnc#1012382). - tracing: Remove extra zeroing out of the ring buffer page (bnc#1012382). - tty fix oops when rmmod 8250 (bnc#1012382). - uas: Always apply US_FL_NO_ATA_1X quirk to Seagate devices (bnc#1012382). - uas: ignore UAS for Norelsys NS1068(X) chips (bnc#1012382). - udf: Avoid overflow when session starts at large offset (bnc#1012382). - um: link vmlinux with -no-pie (bnc#1012382). - usb: Add device quirk for Logitech HD Pro Webcam C925e (bnc#1012382). - usb: Fix off by one in type-specific length check of BOS SSP capability (git-fixes). - usb: Increase usbfs transfer limit (bnc#1012382). - usb: add RESET_RESUME for ELSA MicroLink 56K (bnc#1012382). - usb: core: Add type-specific length check of BOS descriptors (bnc#1012382). - usb: core: prevent malicious bNumInterfaces overflow (bnc#1012382). - usb: devio: Prevent integer overflow in proc_do_submiturb() (bnc#1012382). - usb: fix usbmon BUG trigger (bnc#1012382). - usb: gadget: configs: plug memory leak (bnc#1012382). - usb: gadget: f_uvc: Sanity check wMaxPacketSize for SuperSpeed (bnc#1012382). - usb: gadget: ffs: Forbid usb_ep_alloc_request from sleeping (bnc#1012382). - usb: gadget: udc: remove pointer dereference after free (bnc#1012382). - usb: gadgetfs: Fix a potential memory leak in 'dev_config()' (bnc#1012382). - usb: hub: Cycle HUB power when initialization fails (bnc#1012382). - usb: misc: usb3503: make sure reset is low for at least 100us (bnc#1012382). - usb: musb: da8xx: fix babble condition handling (bnc#1012382). - usb: phy: isp1301: Add OF device ID table (bnc#1012382). - usb: phy: isp1301: Fix build warning when CONFIG_OF is disabled (git-fixes). - usb: phy: tahvo: fix error handling in tahvo_usb_probe() (bnc#1012382). - usb: quirks: Add no-lpm quirk for KY-688 USB 3.1 Type-C Hub (bnc#1012382). - usb: serial: cp210x: add IDs for LifeScan OneTouch Verio IQ (bnc#1012382). - usb: serial: cp210x: add new device ID ELV ALC 8xxx (bnc#1012382). - usb: serial: ftdi_sio: add id for Airbus DS P8GR (bnc#1012382). - usb: serial: option: add Quectel BG96 id (bnc#1012382). - usb: serial: option: add support for Telit ME910 PID 0x1101 (bnc#1012382). - usb: serial: option: adding support for YUGA CLM920-NC5 (bnc#1012382). - usb: serial: qcserial: add Sierra Wireless EM7565 (bnc#1012382). - usb: uas and storage: Add US_FL_BROKEN_FUA for another JMicron JMS567 ID (bnc#1012382). - usb: usbfs: Filter flags passed in from user space (bnc#1012382). - usb: usbip: Fix possible deadlocks reported by lockdep (bnc#1012382). - usb: xhci: Add XHCI_TRUST_TX_LENGTH for Renesas uPD720201 (bnc#1012382). - usb: xhci: fix panic in xhci_free_virt_devices_depth_first (bnc#1012382). - usbip: Fix implicit fallthrough warning (bnc#1012382). - usbip: Fix potential format overflow in userspace tools (bnc#1012382). - usbip: fix stub_rx: get_pipe() to validate endpoint number (bnc#1012382). - usbip: fix stub_rx: harden CMD_SUBMIT path to handle malicious input (bnc#1012382). - usbip: fix stub_send_ret_submit() vulnerability to null transfer_buffer (bnc#1012382). - usbip: fix usbip bind writing random string after command in match_busid (bnc#1012382). - usbip: prevent leaking socket pointer address in messages (bnc#1012382). - usbip: prevent vhci_hcd driver from leaking a socket pointer address (bnc#1012382). - usbip: remove kernel addresses from usb device and urb debug msgs (bnc#1012382). - usbip: stub: stop printing kernel pointer addresses in messages (bnc#1012382). - usbip: vhci: stop printing kernel pointer addresses in messages (bnc#1012382). - userfaultfd: selftest: vm: allow to build in vm/ directory (bnc#1012382). - userfaultfd: shmem: __do_fault requires VM_FAULT_NOPAGE (bnc#1012382). - video: fbdev: au1200fb: Release some resources if a memory allocation fails (bnc#1012382). - video: fbdev: au1200fb: Return an error code if a memory allocation fails (bnc#1012382). - virtio: release virtio index when fail to device_register (bnc#1012382). - vmxnet3: repair memory leak (bnc#1012382). - vsyscall: Fix permissions for emulate mode with KAISER/PTI (bnc#1012382). - vt6655: Fix a possible sleep-in-atomic bug in vt6655_suspend (bnc#1012382). - vti6: Do not report path MTU below IPV6_MIN_MTU (bnc#1012382). - vti6: fix device register to report IFLA_INFO_KIND (bnc#1012382). - workqueue: trigger WARN if queue_delayed_work() is called with NULL @wq (bnc#1012382). - writeback: fix memory leak in wb_queue_work() (bnc#1012382). - x.509: fix buffer overflow detection in sprint_oid() (bsc#1075078). - x.509: reject invalid BIT STRING for subjectPublicKey (bnc#1012382). - x509: fix printing uninitialized stack memory when OID is empty (bsc#1075078). - x86/Documentation: Add PTI description (bnc#1012382). - x86/PCI: Make broadcom_postcore_init() check acpi_disabled (bnc#1012382). - x86/acpi: Handle SCI interrupts above legacy space gracefully (bsc#1068984). - x86/acpi: Reduce code duplication in mp_override_legacy_irq() (bsc#1068984). - x86/alternatives: Add missing '\n' at end of ALTERNATIVE inline asm (bnc#1012382). - x86/alternatives: Fix optimize_nops() checking (bnc#1012382). - x86/apic/vector: Fix off by one in error path (bnc#1012382). - x86/asm/32: Make sync_core() handle missing CPUID on all 32-bit kernels (bnc#1012382). - x86/boot: Fix early command-line parsing when matching at end (bsc#1068032). - x86/cpu, x86/pti: Do not enable PTI on AMD processors (bnc#1012382). - x86/cpu: Factor out application of forced CPU caps (bnc#1012382). - x86/cpu: Implement CPU vulnerabilites sysfs functions (bnc#1012382). - x86/cpu: Merge bugs.c and bugs_64.c (bnc#1012382). - x86/cpufeatures: Add X86_BUG_CPU_INSECURE (bnc#1012382). - x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] (bnc#1012382). - x86/cpufeatures: Make CPU bugs sticky (bnc#1012382). - x86/efi-bgrt: Fix kernel panic when mapping BGRT data (bnc#1012382). - x86/efi-bgrt: Replace early_memremap() with memremap() (bnc#1012382). - x86/efi: Build our own page table structures (bnc#1012382). - x86/efi: Hoist page table switching code into efi_call_virt() (bnc#1012382). - x86/entry: Use SYSCALL_DEFINE() macros for sys_modify_ldt() (bnc#1012382). - x86/hpet: Prevent might sleep splat on resume (bnc#1012382). - x86/kasan: Clear kasan_zero_page after TLB flush (bnc#1012382). - x86/kasan: Write protect kasan zero shadow (bnc#1012382). - x86/microcode/intel: Extend BDW late-loading further with LLC size check (bnc#1012382). - x86/microcode/intel: Extend BDW late-loading with a revision check (bnc#1012382). - x86/microcode/intel: Fix BDW late-loading revision check (bnc#1012382). - x86/mm/32: Move setup_clear_cpu_cap(X86_FEATURE_PCID) earlier (git-fixes). - x86/mm/pat: Ensure cpa->pfn only contains page frame numbers (bnc#1012382). - x86/mm: Disable PCID on 32-bit kernels (bnc#1012382). - x86/pti/efi: broken conversion from efi to kernel page table (bnc#1012382). - x86/pti: Document fix wrong index (bnc#1012382). - x86/pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN (bnc#1012382). - x86/retpolines/spec_ctrl: disable IBRS on !SKL if retpolines are active (bsc#1068032). - x86/smpboot: Remove stale TLB flush invocations (bnc#1012382). - x86/spectre_v2: fix ordering in IBRS initialization (bsc#1075994 bsc#1075091). - x86/spectre_v2: nospectre_v2 means nospec too (bsc#1075994 bsc#1075091). - x86/tlb: Drop the _GPL from the cpu_tlbstate export (bnc#1012382). - x86/vm86/32: Switch to flush_tlb_mm_range() in mark_screen_rdonly() (bnc#1012382). - xen-netfront: Improve error handling during initialization (bnc#1012382). - xen-netfront: avoid crashing on resume after a failure in talk_to_netback() (bnc#1012382). - xfrm: Copy policy family in clone_policy (bnc#1012382). - xfs: Add infrastructure needed for error propagation during buffer IO failure (bsc#1068569). - xfs: Properly retry failed inode items in case of error during buffer writeback (bsc#1068569). - xfs: add 'fail at unmount' error handling configuration (bsc#1068569). - xfs: add configurable error support to metadata buffers (bsc#1068569). - xfs: add configuration handlers for specific errors (bsc#1068569). - xfs: add configuration of error failure speed (bsc#1068569). - xfs: address kabi for xfs buffer retry infrastructure (kabi). - xfs: configurable error behavior via sysfs (bsc#1068569). - xfs: fix incorrect extent state in xfs_bmap_add_extent_unwritten_real (bnc#1012382). - xfs: fix log block underflow during recovery cycle verification (bnc#1012382). - xfs: fix up inode32/64 (re)mount handling (bsc#1069160). - xfs: introduce metadata IO error class (bsc#1068569). - xfs: introduce table-based init for error behaviors (bsc#1068569). - xfs: remove xfs_trans_ail_delete_bulk (bsc#1068569). - xhci: Do not add a virt_dev to the devs array before it's fully allocated (bnc#1012382). - xhci: Fix ring leak in failure path of xhci_alloc_virt_device() (bnc#1012382). - xhci: plat: Register shutdown for xhci_plat (bnc#1012382). - zram: set physical queue limits to avoid array out of bounds accesses (bnc#1012382).

Patchnames: SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2018-285,SUSE-SLE-DESKTOP-12-SP2-2018-285,SUSE-SLE-HA-12-SP2-2018-285,SUSE-SLE-Live-Patching-12-2018-285,SUSE-SLE-RPI-12-SP2-2018-285,SUSE-SLE-SDK-12-SP2-2018-285,SUSE-SLE-SERVER-12-SP2-2018-285,SUSE-SLE-WE-12-SP2-2018-285

CVE-2017-15129

6.1 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 76 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17712

8 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H

Affected products

Recommended 76 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-17862

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 76 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17864

3.3 (Low)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 76 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-18017

5.4 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 76 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5715

7.1 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 76 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-1000004

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 76 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-5332

3.6 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 76 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-5333

2.9 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 76 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64	—	Vendor Fix

Threats

Impact low

References

121 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1012382	self
https://bugzilla.suse.com/1012917	self
https://bugzilla.suse.com/1019784	self
https://bugzilla.suse.com/1022476	self
https://bugzilla.suse.com/1031717	self
https://bugzilla.suse.com/1038078	self
https://bugzilla.suse.com/1038085	self
https://bugzilla.suse.com/1043652	self
https://bugzilla.suse.com/1048585	self
https://bugzilla.suse.com/1052360	self
https://bugzilla.suse.com/1060279	self
https://bugzilla.suse.com/1066223	self
https://bugzilla.suse.com/1066842	self
https://bugzilla.suse.com/1068032	self
https://bugzilla.suse.com/1068038	self
https://bugzilla.suse.com/1068569	self
https://bugzilla.suse.com/1068984	self
https://bugzilla.suse.com/1069160	self
https://bugzilla.suse.com/1070799	self
https://bugzilla.suse.com/1072163	self
https://bugzilla.suse.com/1072484	self
https://bugzilla.suse.com/1072589	self
https://bugzilla.suse.com/1073229	self
https://bugzilla.suse.com/1073928	self
https://bugzilla.suse.com/1074134	self
https://bugzilla.suse.com/1074392	self
https://bugzilla.suse.com/1074488	self
https://bugzilla.suse.com/1074621	self
https://bugzilla.suse.com/1074709	self
https://bugzilla.suse.com/1074839	self
https://bugzilla.suse.com/1074847	self
https://bugzilla.suse.com/1075066	self
https://bugzilla.suse.com/1075078	self
https://bugzilla.suse.com/1075087	self
https://bugzilla.suse.com/1075091	self
https://bugzilla.suse.com/1075428	self
https://bugzilla.suse.com/1075617	self
https://bugzilla.suse.com/1075621	self
https://bugzilla.suse.com/1075627	self
https://bugzilla.suse.com/1075994	self
https://bugzilla.suse.com/1076017	self
https://bugzilla.suse.com/1076110	self
https://bugzilla.suse.com/1076806	self
https://bugzilla.suse.com/1076809	self
https://bugzilla.suse.com/1076872	self
https://bugzilla.suse.com/1076899	self
https://bugzilla.suse.com/1077068	self
https://bugzilla.suse.com/1077560	self
https://bugzilla.suse.com/1077592	self
https://bugzilla.suse.com/1078526	self
https://bugzilla.suse.com/1078681	self
https://bugzilla.suse.com/963844	self
https://bugzilla.suse.com/988524	self
https://www.suse.com/security/cve/CVE-2017-15129/	self
https://www.suse.com/security/cve/CVE-2017-17712/	self
https://www.suse.com/security/cve/CVE-2017-17862/	self
https://www.suse.com/security/cve/CVE-2017-17864/	self
https://www.suse.com/security/cve/CVE-2017-18017/	self
https://www.suse.com/security/cve/CVE-2017-5715/	self
https://www.suse.com/security/cve/CVE-2018-1000004/	self
https://www.suse.com/security/cve/CVE-2018-5332/	self
https://www.suse.com/security/cve/CVE-2018-5333/	self
https://www.suse.com/security/cve/CVE-2017-15129	external
https://bugzilla.suse.com/1074839	external
https://www.suse.com/security/cve/CVE-2017-17712	external
https://bugzilla.suse.com/1073229	external
https://bugzilla.suse.com/1073230	external
https://www.suse.com/security/cve/CVE-2017-17862	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17864	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-18017	external
https://bugzilla.suse.com/1074488	external
https://bugzilla.suse.com/1080255	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1115893	external
https://bugzilla.suse.com/971126	external
https://www.suse.com/security/cve/CVE-2017-5715	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1074741	external
https://bugzilla.suse.com/1074919	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075007	external
https://bugzilla.suse.com/1075262	external
https://bugzilla.suse.com/1075419	external
https://bugzilla.suse.com/1076115	external
https://bugzilla.suse.com/1076372	external
https://bugzilla.suse.com/1076606	external
https://bugzilla.suse.com/1078353	external
https://bugzilla.suse.com/1080039	external
https://bugzilla.suse.com/1087887	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1088147	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1095735	external
https://bugzilla.suse.com/1102517	external
https://bugzilla.suse.com/1105108	external
https://bugzilla.suse.com/1126516	external
https://bugzilla.suse.com/1173489	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201457	external
https://bugzilla.suse.com/1201877	external
https://bugzilla.suse.com/1203236	external
https://www.suse.com/security/cve/CVE-2018-1000004	external
https://bugzilla.suse.com/1076017	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2018-5332	external
https://bugzilla.suse.com/1075621	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-5333	external
https://bugzilla.suse.com/1075617	external
https://bugzilla.suse.com/1091815	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThe SUSE Linux Enterprise 12 SP2 kernel was updated to 4.4.114 to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis (bnc#1068032).\n\n  The previous fix using CPU Microcode has been complemented by building the Linux Kernel with return trampolines aka \u0027retpolines\u0027.\n\n- CVE-2017-15129: A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel The function get_net_ns_by_id() in net/core/net_namespace.c did not check for the net::count value after it has found a peer network in netns_ids idr, which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely (bnc#1074839).\n- CVE-2017-17712: The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allowed a local user to execute code and gain privileges (bnc#1073229).\n- CVE-2017-17862: kernel/bpf/verifier.c in the Linux kernel ignored unreachable code, even though it would still be processed by JIT compilers. This behavior, also considered an improper branch-pruning logic issue, could possibly be used by local users for denial of service (bnc#1073928).\n- CVE-2017-17864: kernel/bpf/verifier.c in the Linux kernel mishandled states_equal comparisons between the pointer data type and the UNKNOWN_VALUE data type, which allowed local users to obtain potentially sensitive address information, aka a \u0027pointer leak (bnc#1073928).\n- CVE-2017-18017: The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel allowed remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action (bnc#1074488).\n- CVE-2018-1000004: In the Linux kernel a race condition vulnerability existed in the sound system, this can lead to a deadlock and denial of service condition (bnc#1076017).\n- CVE-2018-5332: In the Linux kernel the rds_message_alloc_sgs() function did not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c) (bnc#1075621).\n- CVE-2018-5333: In the Linux kernel the rds_cmsg_atomic function in net/rds/rdma.c mishandled cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference (bnc#1075617).\n\nThe following non-security bugs were fixed:\n\n- 8021q: fix a memory leak for VLAN 0 device (bnc#1012382).\n- ACPI / scan: Prefer devices without _HID/_CID for _ADR matching (bnc#1012382).\n- ARC: uaccess: dont use \u0027l\u0027 gcc inline asm constraint modifier (bnc#1012382).\n- Fix EX_SIZE. We do not have the patches that shave off parts of the exception data.\n- Fix build error in vma.c (bnc#1012382).\n- Fix mishandling of cases with MSR not being present (writing to MSR even though _state == -1).\n- Fix return value from ib[rs|pb]_enabled()\n- Input: trackpoint - force 3 buttons if 0 button is reported (bnc#1012382).\n- KVM: s390: Enable all facility bits that are known good for passthrough (bsc#1076806).\n- Kabi: Keep KVM stable after enable s390 wire up bpb feature (bsc#1076806).\n- Move RFI sysfs to a separate patch\n- Move the RFI debug code into separate patch.\n- Re-enable fixup detection by CPU type in case hypervisor call fails.\n- Revert \u0027Bluetooth: btusb: driver to enable the usb-wakeup feature\u0027 (bnc#1012382).\n- Revert \u0027Re-enable fixup detection by CPU type in case hypervisor call fails.\u0027 The firmware update is required for the existing instructions to also do the cache flush.\n- Revert \u0027arm64: alternatives: add enable parameter to conditional asm macros\u0027 (bsc#1068032).\n- Revert \u0027drm/armada: Fix compile fail\u0027 (bnc#1012382).\n- Revert \u0027drm/radeon: dont switch vt on suspend\u0027 (bnc#1012382).\n- Revert \u0027ipsec: Fix aborted xfrm policy dump crash\u0027 (kabi).\n- Revert \u0027kaiser: vmstat show NR_KAISERTABLE as nr_overhead\u0027 (kabi).\n- Revert \u0027lib/genalloc.c: make the avail variable an atomic_long_t\u0027 (kabi).\n- Revert \u0027module: Add retpoline tag to VERMAGIC\u0027 (bnc#1012382 kabi).\n- Revert \u0027netlink: add a start callback for starting a netlink dump\u0027 (kabi).\n- Revert \u0027ocfs2: should wait dio before inode lock in ocfs2_setattr()\u0027 (bnc#1012382).\n- Revert \u0027s390/kbuild: enable modversions for symbols exported from asm\u0027 (bnc#1012382).\n- Revert \u0027sched/deadline: Use the revised wakeup rule for suspending constrained dl tasks\u0027 (kabi).\n- Revert \u0027scsi: libsas: align sata_device\u0027s rps_resp on a cacheline\u0027 (kabi).\n- Revert \u0027spi: SPI_FSL_DSPI should depend on HAS_DMA\u0027 (bnc#1012382).\n- Revert \u0027userfaultfd: selftest: vm: allow to build in vm/ directory\u0027 (bnc#1012382).\n- Revert \u0027x86/efi: Build our own page table structures\u0027 (bnc#1012382).\n- Revert \u0027x86/efi: Hoist page table switching code into efi_call_virt()\u0027 (bnc#1012382).\n- Revert \u0027x86/mm/pat: Ensure cpa-\u003epfn only contains page frame numbers\u0027 (bnc#1012382).\n- SMB2: Fix share type handling (bnc#1074392).\n- Set supported_modules_check 1 (bsc#1072163).\n- Update patches.suse/powerpc-Secure-memory-rfi-flush-SLE12SP3.patch (bsc#1068032, bsc#1075087).\n- af_key: fix buffer overread in parse_exthdrs() (bnc#1012382).\n- af_key: fix buffer overread in verify_address_len() (bnc#1012382).\n- afs: Adjust mode bits processing (bnc#1012382).\n- afs: Connect up the CB.ProbeUuid (bnc#1012382).\n- afs: Fix afs_kill_pages() (bnc#1012382).\n- afs: Fix missing put_page() (bnc#1012382).\n- afs: Fix page leak in afs_write_begin() (bnc#1012382).\n- afs: Fix the maths in afs_fs_store_data() (bnc#1012382).\n- afs: Flush outstanding writes when an fd is closed (bnc#1012382).\n- afs: Migrate vlocation fields to 64-bit (bnc#1012382).\n- afs: Populate and use client modification time (bnc#1012382).\n- afs: Populate group ID from vnode status (bnc#1012382).\n- afs: Prevent callback expiry timer overflow (bnc#1012382).\n- alpha: fix build failures (bnc#1012382).\n- alsa: aloop: Fix inconsistent format due to incomplete rule (bsc#1031717).\n- alsa: aloop: Fix racy hw constraints adjustment (bsc#1031717).\n- alsa: aloop: Release cable upon open error path (bsc#1031717).\n- alsa: hda - Add HP ZBook 15u G3 Conexant CX20724 GPIO mute leds (bsc#1031717).\n- alsa: hda - Add MIC_NO_PRESENCE fixup for 2 HP machines (bsc#1031717).\n- alsa: hda - Add mute led support for HP EliteBook 840 G3 (bsc#1031717).\n- alsa: hda - Add mute led support for HP ProBook 440 G4 (bsc#1031717).\n- alsa: hda - Apply headphone noise quirk for another Dell XPS 13 variant (bsc#1031717).\n- alsa: hda - Apply the existing quirk to iMac 14,1 (bsc#1031717).\n- alsa: hda - Fix click noises on Samsung Ativ Book 8 (bsc#1031717).\n- alsa: hda - Fix headset microphone detection for ASUS N551 and N751 (bsc#1031717).\n- alsa: hda - Fix mic regression by ASRock mobo fixup (bsc#1031717).\n- alsa: hda - Fix missing COEF init for ALC225/295/299 (bsc#1031717).\n- alsa: hda - Fix surround output pins for ASRock B150M mobo (bsc#1031717).\n- alsa: hda - On-board speaker fixup on ACER Veriton (bsc#1031717).\n- alsa: hda - Skip Realtek SKU check for Lenovo machines (bsc#1031717).\n- alsa: hda - add support for docking station for HP 820 G2 (bsc#1031717).\n- alsa: hda - add support for docking station for HP 840 G3 (bsc#1031717).\n- alsa: hda - change the location for one mic on a Lenovo machine (bsc#1031717).\n- alsa: hda - fix headset mic detection issue on a Dell machine (bsc#1031717).\n- alsa: hda - fix headset mic problem for Dell machines with alc274 (bsc#1031717).\n- alsa: hda/realtek - ALC891 headset mode for Dell (bsc#1031717).\n- alsa: hda/realtek - Add ALC256 HP depop function (bsc#1031717).\n- alsa: hda/realtek - Add default procedure for suspend and resume state (bsc#1031717).\n- alsa: hda/realtek - Add support for ALC1220 (bsc#1031717).\n- alsa: hda/realtek - Add support for Acer Aspire E5-475 headset mic (bsc#1031717).\n- alsa: hda/realtek - Add support for headset MIC for ALC622 (bsc#1031717).\n- alsa: hda/realtek - Enable jack detection function for Intel ALC700 (bsc#1031717).\n- alsa: hda/realtek - Fix ALC275 no sound issue (bsc#1031717).\n- alsa: hda/realtek - Fix Dell AIO LineOut issue (bsc#1031717).\n- alsa: hda/realtek - Fix headset and mic on several Asus laptops with ALC256 (bsc#1031717).\n- alsa: hda/realtek - Fix headset mic and speaker on Asus X441SA/X441UV (bsc#1031717).\n- alsa: hda/realtek - Fix headset mic on several Asus laptops with ALC255 (bsc#1031717).\n- alsa: hda/realtek - Fix pincfg for Dell XPS 13 9370 (bsc#1031717).\n- alsa: hda/realtek - Fix speaker support for Asus AiO ZN270IE (bsc#1031717).\n- alsa: hda/realtek - Fix typo of pincfg for Dell quirk (bsc#1031717).\n- alsa: hda/realtek - New codec device ID for ALC1220 (bsc#1031717).\n- alsa: hda/realtek - New codec support for ALC257 (bsc#1031717).\n- alsa: hda/realtek - New codec support of ALC1220 (bsc#1031717).\n- alsa: hda/realtek - New codecs support for ALC215/ALC285/ALC289 (bsc#1031717).\n- alsa: hda/realtek - No loopback on ALC225/ALC295 codec (bsc#1031717).\n- alsa: hda/realtek - Remove ALC285 device ID (bsc#1031717).\n- alsa: hda/realtek - Support Dell headset mode for ALC3271 (bsc#1031717).\n- alsa: hda/realtek - Support headset mode for ALC234/ALC274/ALC294 (bsc#1031717).\n- alsa: hda/realtek - There is no loopback mixer in the ALC234/274/294 (bsc#1031717).\n- alsa: hda/realtek - Update headset mode for ALC225 (bsc#1031717).\n- alsa: hda/realtek - Update headset mode for ALC298 (bsc#1031717).\n- alsa: hda/realtek - change the location for one of two front microphones (bsc#1031717).\n- alsa: hda/realtek - fix headset mic detection for MSI MS-B120 (bsc#1031717).\n- alsa: hda: Drop useless WARN_ON() (bsc#1031717).\n- alsa: pcm: Abort properly at pending signal in OSS read/write loops (bsc#1031717).\n- alsa: pcm: Add missing error checks in OSS emulation plugin builder (bsc#1031717).\n- alsa: pcm: Allow aborting mutex lock at OSS read/write loops (bsc#1031717).\n- alsa: pcm: Remove incorrect snd_BUG_ON() usages (bsc#1031717).\n- alsa: pcm: Remove yet superfluous WARN_ON() (bsc#1031717).\n- alsa: pcm: prevent UAF in snd_pcm_info (bsc#1031717).\n- alsa: rawmidi: Avoid racy info ioctl via ctl device (bsc#1031717).\n- alsa: seq: Remove spurious WARN_ON() at timer check (bsc#1031717).\n- alsa: usb-audio: Add check return value for usb_string() (bsc#1031717).\n- alsa: usb-audio: Fix out-of-bound error (bsc#1031717).\n- alsa: usb-audio: Fix the missing ctl name suffix at parsing SU (bsc#1031717).\n- arm-ccn: perf: Prevent module unload while PMU is in use (bnc#1012382).\n- arm64/cpufeature: do not use mutex in bringup path (bsc#1068032).\n- arm64: Add hypervisor safe helper for checking constant capabilities (bsc#1068032).\n- arm64: Add macros to read/write system registers (bsc#1068032).\n- arm64: Add skeleton to harden the branch predictor against aliasing attacks (bsc#1068032).\n- arm64: Add trace_hardirqs_off annotation in ret_to_user (bsc#1068032).\n- arm64: Disable TTBR0_EL1 during normal kernel execution (bsc#1068032).\n- arm64: Disable kpti for non broadcast TLB HW (bsc#1068032).\n- arm64: Enable CONFIG_ARM64_SW_TTBR0_PAN (bsc#1068032).\n- arm64: Factor out PAN enabling/disabling into separate uaccess_* macros (bsc#1068032).\n- arm64: Factor out TTBR0_EL1 post-update workaround into a specific asm macro (bsc#1068032).\n- arm64: Fix circular include of asm/lse.h through linux/jump_label.h (bsc#1068032).\n- arm64: Fix compilation (bsc#1068032).\n- arm64: Handle el1 synchronous instruction aborts cleanly (bsc#1068032).\n- arm64: Implement branch predictor hardening for affected Cortex-A CPUs (bsc#1068032).\n- arm64: Initialise high_memory global variable earlier (bnc#1012382).\n- arm64: Introduce uaccess_{disable,enable} functionality based on TTBR0_EL1 (bsc#1068032).\n- arm64: Kconfig: Add CONFIG_UNMAP_KERNEL_AT_EL0 (bsc#1068032).\n- arm64: Kconfig: Reword UNMAP_KERNEL_AT_EL0 kconfig entry (bsc#1068032).\n- arm64: Mask all exceptions during kernel_exit (bsc#1068032).\n- arm64: Move BP hardening to check_and_switch_context (bsc#1068032).\n- arm64: Move post_ttbr_update_workaround to C code (bsc#1068032).\n- arm64: Move the async/fiq helpers to explicitly set process context flags (bsc#1068032).\n- arm64: SW PAN: Point saved ttbr0 at the zero page when switching to init_mm (bsc#1068032).\n- arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb (bsc#1068032).\n- arm64: Store struct thread_info in sp_el0 (bsc#1068032).\n- arm64: Take into account ID_AA64PFR0_EL1.CSV3 (bsc#1068032).\n- arm64: Use static keys for CPU features (bsc#1068032).\n- arm64: add macro to extract ESR_ELx.EC (bsc#1068032).\n- arm64: alternative: add auto-nop infrastructure (bsc#1068032).\n- arm64: barriers: introduce nops and __nops macros for NOP sequences (bsc#1068032).\n- arm64: cpu_errata: Allow an erratum to be match for all revisions of a core (bsc#1068032).\n- arm64: cpufeature: Add scope for capability check (bsc#1068032).\n- arm64: cpufeature: Pass capability structure to -\u003eenable callback (bsc#1068032).\n- arm64: debug: remove unused local_dbg_{enable, disable} macros (bsc#1068032).\n- arm64: do not pull uaccess.h into *.S (bsc#1068032).\n- arm64: entry.S convert el0_sync (bsc#1068032).\n- arm64: entry.S: Remove disable_dbg (bsc#1068032).\n- arm64: entry.S: convert el1_sync (bsc#1068032).\n- arm64: entry.S: convert elX_irq (bsc#1068032).\n- arm64: entry.S: move SError handling into a C function for future expansion (bsc#1068032).\n- arm64: entry: Add exception trampoline page for exceptions from EL0 (bsc#1068032).\n- arm64: entry: Add fake CPU feature for unmapping the kernel at EL0 (bsc#1068032).\n- arm64: entry: Explicitly pass exception level to kernel_ventry macro (bsc#1068032).\n- arm64: entry: Hook up entry trampoline to exception vectors (bsc#1068032).\n- arm64: entry: remove pointless SPSR mode check (bsc#1068032).\n- arm64: explicitly mask all exceptions (bsc#1068032).\n- arm64: factor out PAGE_* and CONT_* definitions (bsc#1068032).\n- arm64: factor out entry stack manipulation (bsc#1068032).\n- arm64: factor work_pending state machine to C (bsc#1068032).\n- arm64: fpsimd: Prevent registers leaking from dead tasks (bnc#1012382).\n- arm64: head.S: get rid of x25 and x26 with \u0027global\u0027 scope (bsc#1068032).\n- arm64: introduce an order for exceptions (bsc#1068032).\n- arm64: introduce mov_q macro to move a constant into a 64-bit register (bsc#1068032).\n- arm64: kaslr: Put kernel vectors address in separate data page (bsc#1068032).\n- arm64: kill ESR_LNX_EXEC (bsc#1068032).\n- arm64: kpti: Fix the interaction between ASID switching and software PAN (bsc#1068032).\n- arm64: kvm: Fix SMCCC handling of unimplemented SMC/HVC calls (bnc#1012382).\n- arm64: kvm: Survive unknown traps from guests (bnc#1012382).\n- arm64: kvm: Use per-CPU vector when BP hardening is enabled (bsc#1068032).\n- arm64: kvm: fix VTTBR_BADDR_MASK BUG_ON off-by-one (bnc#1012382).\n- arm64: mm: Add arm64_kernel_unmapped_at_el0 helper (bsc#1068032).\n- arm64: mm: Allocate ASIDs in pairs (bsc#1068032).\n- arm64: mm: Fix and re-enable ARM64_SW_TTBR0_PAN (bsc#1068032).\n- arm64: mm: Introduce TTBR_ASID_MASK for getting at the ASID in the TTBR (bsc#1068032).\n- arm64: mm: Invalidate both kernel and user ASIDs when performing TLBI (bsc#1068032).\n- arm64: mm: Map entry trampoline into trampoline and kernel page tables (bsc#1068032).\n- arm64: mm: Move ASID from TTBR0 to TTBR1 (bsc#1068032).\n- arm64: mm: Rename post_ttbr0_update_workaround (bsc#1068032).\n- arm64: mm: Temporarily disable ARM64_SW_TTBR0_PAN (bsc#1068032).\n- arm64: mm: Use non-global mappings for kernel space (bsc#1068032).\n- arm64: mm: hardcode rodata=true (bsc#1068032).\n- arm64: swp emulation: bound LL/SC retries before rescheduling (bsc#1068032).\n- arm64: sysreg: Fix unprotected macro argmuent in write_sysreg (bsc#1068032).\n- arm64: sysreg: allow write_sysreg to use XZR (bsc#1068032).\n- arm64: tlbflush.h: add __tlbi() macro (bsc#1068032).\n- arm64: tls: Avoid unconditional zeroing of tpidrro_el0 for native tasks (bsc#1068032).\n- arm64: use RET instruction for exiting the trampoline (bsc#1068032).\n- arm64: use alternative auto-nop (bsc#1068032).\n- arm64: xen: Enable user access before a privcmd hvc call (bsc#1068032).\n- arm: BUG if jumping to usermode address in kernel mode (bnc#1012382).\n- arm: OMAP1: DMA: Correct the number of logical channels (bnc#1012382).\n- arm: OMAP2+: Fix device node reference counts (bnc#1012382).\n- arm: OMAP2+: Release device node after it is no longer needed (bnc#1012382).\n- arm: OMAP2+: gpmc-onenand: propagate error on initialization failure (bnc#1012382).\n- arm: avoid faulting on qemu (bnc#1012382).\n- arm: dma-mapping: disallow dma_get_sgtable() for non-kernel managed memory (bnc#1012382).\n- arm: dts: am335x-evmsk: adjust mmc2 param to allow suspend (bnc#1012382).\n- arm: dts: kirkwood: fix pin-muxing of MPP7 on OpenBlocks A7 (bnc#1012382).\n- arm: dts: omap3: logicpd-torpedo-37xx-devkit: Fix MMC1 cd-gpio (bnc#1012382).\n- arm: dts: ti: fix PCI bus dtc warnings (bnc#1012382).\n- arm: kprobes: Align stack to 8-bytes in test code (bnc#1012382).\n- arm: kprobes: Fix the return address of multiple kretprobes (bnc#1012382).\n- arm: kvm: Fix VTTBR_BADDR_MASK BUG_ON off-by-one (bnc#1012382).\n- arm: kvm: Survive unknown traps from guests (bnc#1012382).\n- asm-prototypes: Clear any CPP defines before declaring the functions (git-fixes).\n- asn.1: check for error from ASN1_OP_END__ACT actions (bnc#1012382).\n- asn.1: fix out-of-bounds read when parsing indefinite length item (bnc#1012382).\n- asoc: fsl_ssi: AC\u002797 ops need regmap, clock and cleaning up on failure (bsc#1031717).\n- asoc: twl4030: fix child-node lookup (bsc#1031717).\n- asoc: wm_adsp: Fix validation of firmware and coeff lengths (bsc#1031717).\n- ath9k: fix tx99 potential info leak (bnc#1012382).\n- atm: horizon: Fix irq release error (bnc#1012382).\n- audit: ensure that \u0027audit=1\u0027 actually enables audit for PID 1 (bnc#1012382).\n- axonram: Fix gendisk handling (bnc#1012382).\n- backlight: pwm_bl: Fix overflow condition (bnc#1012382).\n- bcache.txt: standardize document format (bsc#1076110).\n- bcache: Avoid nested function definition (bsc#1076110).\n- bcache: Do not reinvent the wheel but use existing llist API (bsc#1076110).\n- bcache: Fix building error on MIPS (bnc#1012382).\n- bcache: Remove deprecated create_workqueue (bsc#1076110).\n- bcache: Remove redundant block_size assignment (bsc#1076110).\n- bcache: Remove redundant parameter for cache_alloc() (bsc#1076110).\n- bcache: Remove redundant set_capacity (bsc#1076110).\n- bcache: Update continue_at() documentation (bsc#1076110).\n- bcache: add a comment in journal bucket reading (bsc#1076110).\n- bcache: check return value of register_shrinker (bsc#1076110).\n- bcache: debug: avoid accessing .bi_io_vec directly (bsc#1076110).\n- bcache: do not write back data if reading it failed (bsc#1076110).\n- bcache: documentation formatting, edited for clarity, stripe alignment notes (bsc#1076110).\n- bcache: documentation updates and corrections (bsc#1076110).\n- bcache: explicitly destroy mutex while exiting (bnc#1012382).\n- bcache: fix a comments typo in bch_alloc_sectors() (bsc#1076110).\n- bcache: fix sequential large write IO bypass (bsc#1076110).\n- bcache: fix wrong cache_misses statistics (bnc#1012382).\n- bcache: gc does not work when triggering by manual command (bsc#1076110, bsc#1038078).\n- bcache: implement PI controller for writeback rate (bsc#1076110).\n- bcache: increase the number of open buckets (bsc#1076110).\n- bcache: only permit to recovery read error when cache device is clean (bnc#1012382 bsc#1043652).\n- bcache: partition support: add 16 minors per bcacheN device (bsc#1076110).\n- bcache: pr_err: more meaningful error message when nr_stripes is invalid (bsc#1076110).\n- bcache: rearrange writeback main thread ratelimit (bsc#1076110).\n- bcache: recover data from backing when data is clean (bnc#1012382 bsc#1043652).\n- bcache: register_bcache(): call blkdev_put() when cache_alloc() fails (bsc#1076110).\n- bcache: remove unused parameter (bsc#1076110).\n- bcache: rewrite multiple partitions support (bsc#1076110, bsc#1038085, bsc#1019784).\n- bcache: safeguard a dangerous addressing in closure_queue (bsc#1076110).\n- bcache: silence static checker warning (bsc#1076110).\n- bcache: smooth writeback rate control (bsc#1076110).\n- bcache: switch to using blk_queue_write_cache() (bsc#1076110).\n- bcache: update bio-\u003ebi_opf bypass/writeback REQ_ flag hints (bsc#1076110).\n- bcache: update bucket_in_use in real time (bsc#1076110).\n- bcache: update document info (bsc#1076110).\n- bcache: use kmalloc to allocate bio in bch_data_verify() (bsc#1076110).\n- bcache: use llist_for_each_entry_safe() in __closure_wake_up() (bsc#1076110).\n- bcache: writeback rate clamping: make 32 bit safe (bsc#1076110).\n- bcache: writeback rate shouldn\u0027t artifically clamp (bsc#1076110).\n- be2net: restore properly promisc mode after queues reconfiguration (bsc#963844).\n- block: export bio_free_pages to other modules (bsc#1076110).\n- block: wake up all tasks blocked in get_request() (bnc#1012382).\n- bluetooth: btusb: driver to enable the usb-wakeup feature (bnc#1012382).\n- bnx2x: do not rollback VF MAC/VLAN filters we did not configure (bnc#1012382).\n- bnx2x: fix possible overrun of VFPF multicast addresses array (bnc#1012382).\n- bnx2x: prevent crash when accessing PTP with interface down (bnc#1012382).\n- btrfs: account for pinned bytes in should_alloc_chunk (bsc#1066842).\n- btrfs: add missing memset while reading compressed inline extents (bnc#1012382).\n- btrfs: clear space cache inode generation always (bnc#1012382).\n- can: af_can: can_rcv(): replace WARN_ONCE by pr_warn_once (bnc#1012382).\n- can: af_can: canfd_rcv(): replace WARN_ONCE by pr_warn_once (bnc#1012382).\n- can: ems_usb: cancel urb on -EPIPE and -EPROTO (bnc#1012382).\n- can: esd_usb2: cancel urb on -EPIPE and -EPROTO (bnc#1012382).\n- can: gs_usb: fix return value of the \u0027set_bittiming\u0027 callback (bnc#1012382).\n- can: kvaser_usb: Fix comparison bug in kvaser_usb_read_bulk_callback() (bnc#1012382).\n- can: kvaser_usb: cancel urb on -EPIPE and -EPROTO (bnc#1012382).\n- can: kvaser_usb: free buf in error paths (bnc#1012382).\n- can: kvaser_usb: ratelimit errors if incomplete messages are received (bnc#1012382).\n- can: peak: fix potential bug in packet fragmentation (bnc#1012382).\n- can: ti_hecc: Fix napi poll return value for repoll (bnc#1012382).\n- can: usb_8dev: cancel urb on -EPIPE and -EPROTO (bnc#1012382).\n- cdc-acm: apply quirk for card reader (bsc#1060279).\n- cdrom: factor out common open_for_* code (bsc#1048585).\n- cdrom: wait for tray to close (bsc#1048585).\n- ceph: drop negative child dentries before try pruning inode\u0027s alias (bnc#1012382).\n- ceph: more accurate statfs (bsc#1077068).\n- clk: imx6: refine hdmi_isfr\u0027s parent to make HDMI work on i.MX6 SoCs w/o VPU (bnc#1012382).\n- clk: mediatek: add the option for determining PLL source clock (bnc#1012382).\n- clk: tegra: Fix cclk_lp divisor register (bnc#1012382).\n- cpuidle: Validate cpu_dev in cpuidle_add_sysfs() (bnc#1012382).\n- cpuidle: fix broadcast control when broadcast can not be entered (bnc#1012382).\n- cpuidle: powernv: Pass correct drv-\u003ecpumask for registration (bnc#1012382).\n- crypto: algapi - fix NULL dereference in crypto_remove_spawns() (bnc#1012382).\n- crypto: chacha20poly1305 - validate the digest size (bnc#1012382).\n- crypto: crypto4xx - increase context and scatter ring buffer elements (bnc#1012382).\n- crypto: deadlock between crypto_alg_sem/rtnl_mutex/genl_mutex (bnc#1012382).\n- crypto: mcryptd - protect the per-CPU queue with a lock (bnc#1012382).\n- crypto: n2 - cure use after free (bnc#1012382).\n- crypto: pcrypt - fix freeing pcrypt instances (bnc#1012382).\n- crypto: s5p-sss - Fix completing crypto request in IRQ handler (bnc#1012382).\n- crypto: tcrypt - fix buffer lengths in test_aead_speed() (bnc#1012382).\n- cxl: Check if vphb exists before iterating over AFU devices (bsc#1066223).\n- dax: Pass detailed error code from __dax_fault() (bsc#1072484).\n- dccp: don\u0027t restart ccid2_hc_tx_rto_expire() if sk in closed state (bnc#1012382).\n- delay: add poll_event_interruptible (bsc#1048585).\n- dm btree: fix serious bug in btree_split_beneath() (bnc#1012382).\n- dm bufio: fix shrinker scans when (nr_to_scan \u003c retain_target) (bnc#1012382).\n- dm thin metadata: THIN_MAX_CONCURRENT_LOCKS should be 6 (bnc#1012382).\n- dmaengine: Fix array index out of bounds warning in __get_unmap_pool() (bnc#1012382).\n- dmaengine: dmatest: move callback wait queue to thread context (bnc#1012382).\n- dmaengine: pl330: fix double lock (bnc#1012382).\n- dmaengine: ti-dma-crossbar: Correct am335x/am43xx mux value type (bnc#1012382).\n- drivers/firmware: Expose psci_get_version through psci_ops structure (bsc#1068032).\n- drivers/md/bcache/util.h: remove duplicate inclusion of blkdev.h (bsc#1076110).\n- drivers: base: cacheinfo: fix boot error message when acpi is enabled (bnc#1012382).\n- drivers: base: cacheinfo: fix x86 with CONFIG_OF enabled (bnc#1012382).\n- drivers: net: xgene: Fix hardware checksum setting (bsc#1078526).\n- drm/amd/amdgpu: fix console deadlock if late init failed (bnc#1012382).\n- drm/exynos/decon5433: set STANDALONE_UPDATE_F on output enablement (bnc#1012382).\n- drm/exynos: gem: Drop NONCONTIG flag for buffers allocated without IOMMU (bnc#1012382).\n- drm/omap: fix dmabuf mmap for dma_alloc\u0027ed buffers (bnc#1012382).\n- drm/radeon/si: add dpm quirk for Oland (bnc#1012382).\n- drm/radeon: fix atombios on big endian (bnc#1012382).\n- drm/radeon: reinstate oland workaround for sclk (bnc#1012382).\n- drm/vmwgfx: Potential off by one in vmw_view_add() (bnc#1012382).\n- drm: extra printk() wrapper macros (bnc#1012382).\n- dynamic-debug-howto: fix optional/omitted ending line number to be LARGE instead of 0 (bnc#1012382).\n- edac, i5000, i5400: Fix definition of NRECMEMB register (bnc#1012382).\n- edac, i5000, i5400: Fix use of MTR_DRAM_WIDTH macro (bnc#1012382).\n- edac, sb_edac: Fix missing break in switch (bnc#1012382).\n- eeprom: at24: check at24_read/write arguments (bnc#1012382).\n- efi/esrt: Cleanup bad memory map log messages (bnc#1012382).\n- efi: Move some sysfs files to be read-only by root (bnc#1012382).\n- eventpoll.h: add missing epoll event masks (bnc#1012382).\n- ext4: Fix ENOSPC handling in DAX page fault handle (bsc#1072484).\n- ext4: fix crash when a directory\u0027s i_size is too small (bnc#1012382).\n- ext4: fix fdatasync(2) after fallocate(2) operation (bnc#1012382).\n- fbdev: controlfb: Add missing modes to fix out of bounds access (bnc#1012382).\n- fjes: Fix wrong netdevice feature flags (bnc#1012382).\n- flow_dissector: properly cap thoff field (bnc#1012382).\n- fm10k: ensure we process SM mbx when processing VF mbx (bnc#1012382).\n- fork: clear thread stack upon allocation (bsc#1077560). Conflicts: \tseries.conf\n- fscache: Fix the default for fscache_maybe_release_page() (bnc#1012382).\n- futex: Prevent overflow by strengthen input validation (bnc#1012382).\n- gcov: disable for COMPILE_TEST (bnc#1012382).\n- gfs2: Take inode off order_write list when setting jdata flag (bnc#1012382).\n- gpio: altera: Use handle_level_irq when configured as a level_high (bnc#1012382).\n- hid: chicony: Add support for another ASUS Zen AiO keyboard (bnc#1012382).\n- hid: xinmo: fix for out of range for THT 2P arcade controller (bnc#1012382).\n- hrtimer: Reset hrtimer cpu base proper on CPU hotplug (bnc#1012382).\n- hv: kvp: Avoid reading past allocated blocks from KVP file (bnc#1012382).\n- hwmon: (asus_atk0110) fix uninitialized data access (bnc#1012382).\n- i40e: Do not enable NAPI on q_vectors that have no rings (bnc#1012382).\n- ib/hfi1: Correct defered count after processing qp_wait_list (git-fixes).\n- ib/hfi1: Fix rnr_timer addition (git-fixes).\n- ib/hfi1: Handle kzalloc failure in init_pervl_scs (git-fixes).\n- ib/hfi1: Move iowait_init() to priv allocate (git-fixes).\n- ib/hfi1: Prevent kernel QP post send hard lockups (git-fixes).\n- ib/hfi1: Reset QSFP on every run through channel tuning (git-fixes).\n- ib/ipoib: Fix lockdep issue found on ipoib_ib_dev_heavy_flush (git-fixes).\n- ib/ipoib: Grab rtnl lock on heavy flush when calling ndo_open/stop (bnc#1012382).\n- ib/mlx4: Increase maximal message size under UD QP (bnc#1012382).\n- ib/mlx5: Assign send CQ and recv CQ of UMR QP (bnc#1012382).\n- ib/qib: Remove qpt_mask global (git-fixes).\n- ib/rdmavt: restore IRQs on error path in rvt_create_ah() (git-fixes).\n- ib/srpt: Disable RDMA access by the initiator (bnc#1012382).\n- ibmvnic: Allocate and request vpd in init_resources (bsc#1076872).\n- ibmvnic: Do not handle RX interrupts when not up (bsc#1075066).\n- ibmvnic: Fix IP offload control buffer (bsc#1076899).\n- ibmvnic: Fix IPv6 packet descriptors (bsc#1076899).\n- ibmvnic: Fix pending MAC address changes (bsc#1075627).\n- ibmvnic: Modify buffer size and number of queues on failover (bsc#1076872).\n- ibmvnic: Revert to previous mtu when unsupported value requested (bsc#1076872).\n- ibmvnic: Wait for device response when changing MAC (bsc#1078681).\n- igb: check memory allocation failure (bnc#1012382).\n- ima: fix hash algorithm initialization (bnc#1012382).\n- inet: frag: release spinlock before calling icmp_send() (bnc#1012382).\n- input: 88pm860x-ts - fix child-node lookup (bnc#1012382).\n- input: elantech - add new icbody type 15 (bnc#1012382).\n- input: i8042 - add TUXEDO BU1406 (N24_25BU) to the nomux list (bnc#1012382).\n- input: twl4030-vibra - fix sibling-node lookup (bnc#1012382).\n- input: twl6040-vibra - fix DT node memory management (bnc#1012382).\n- input: twl6040-vibra - fix child-node lookup (bnc#1012382).\n- intel_th: pci: Add Gemini Lake support (bnc#1012382).\n- iommu/arm-smmu-v3: Do not free page table ops twice (bnc#1012382).\n- iommu/vt-d: Fix scatterlist offset handling (bnc#1012382).\n- ip6_tunnel: disable dst caching if tunnel is dual-stack (bnc#1012382).\n- ipmi: Stop timers before cleaning up the module (bnc#1012382).\n- ipv4: Fix use-after-free when flushing FIB tables (bnc#1012382).\n- ipv4: Make neigh lookup keys for loopback/point-to-point devices be INADDR_ANY (bnc#1012382).\n- ipv4: igmp: guard against silly MTU values (bnc#1012382).\n- ipv6: Fix getsockopt() for sockets with default IPV6_AUTOFLOWLABEL (bnc#1012382).\n- ipv6: fix possible mem leaks in ipv6_make_skb() (bnc#1012382).\n- ipv6: fix udpv6 sendmsg crash caused by too small MTU (bnc#1012382).\n- ipv6: ip6_make_skb() needs to clear cork.base.dst (git-fixes).\n- ipv6: mcast: better catch silly mtu values (bnc#1012382).\n- ipv6: reorder icmpv6_init() and ip6_mr_init() (bnc#1012382).\n- ipvlan: fix ipv6 outbound device (bnc#1012382).\n- ipvlan: remove excessive packet scrubbing (bsc#1070799).\n- irda: vlsi_ir: fix check for DMA mapping errors (bnc#1012382).\n- irqchip/crossbar: Fix incorrect type of register size (bnc#1012382).\n- iscsi-target: Make TASK_REASSIGN use proper se_cmd-\u003ecmd_kref (bnc#1012382).\n- iscsi-target: fix memory leak in lio_target_tiqn_addtpg() (bnc#1012382).\n- isdn: kcapi: avoid uninitialized data (bnc#1012382).\n- iw_cxgb4: Only validate the MSN for successful completions (bnc#1012382).\n- ixgbe: fix use of uninitialized padding (bnc#1012382).\n- jump_label: Invoke jump_label_test() via early_initcall() (bnc#1012382).\n- jump_label: Make it possible for arches to invoke jump_label_init() earlier (bsc#1068032).\n- jump_labels: Allow array initialisers (bsc#1068032).\n- kABI: protect struct bpf_map (kabi).\n- kABI: protect struct ipv6_pinfo (kabi).\n- kABI: protect struct t10_alua_tg_pt_gp (kabi).\n- kabi fix for new hash_cred function (bsc#1012917).\n- kabi/severities: do not care about stuff_RSB\n- kaiser: Set _PAGE_NX only if supported (bnc#1012382).\n- kaiser: Set _PAGE_NX only if supported (bnc#1012382).\n- kbuild: add \u0027-fno-stack-check\u0027 to kernel build options (bnc#1012382).\n- kbuild: modversions for EXPORT_SYMBOL() for asm (bsc#1074621 bsc#1068032).\n- kbuild: pkg: use --transform option to prefix paths in tar (bnc#1012382).\n- kdb: Fix handling of kallsyms_symbol_next() return value (bnc#1012382).\n- kernel/acct.c: fix the acct-\u003eneedcheck check in check_free_space() (bnc#1012382).\n- kernel/signal.c: protect the SIGNAL_UNKILLABLE tasks from !sig_kernel_only() signals (bnc#1012382).\n- kernel/signal.c: protect the traced SIGNAL_UNKILLABLE tasks from SIGKILL (bnc#1012382).\n- kernel/signal.c: remove the no longer needed SIGNAL_UNKILLABLE check in complete_signal() (bnc#1012382).\n- kernel: make groups_sort calling a responsibility group_info allocators (bnc#1012382).\n- keys: add missing permission check for request_key() destination (bnc#1012382).\n- kprobes/x86: Disable preemption in ftrace-based jprobes (bnc#1012382).\n- kpti: Rename to PAGE_TABLE_ISOLATION (bnc#1012382).\n- kpti: Report when enabled (bnc#1012382).\n- kvm: Fix stack-out-of-bounds read in write_mmio (bnc#1012382).\n- kvm: VMX: Fix enable VPID conditions (bnc#1012382).\n- kvm: VMX: remove I/O port 0x80 bypass on Intel hosts (bnc#1012382).\n- kvm: X86: Fix load RFLAGS w/o the fixed bit (bnc#1012382).\n- kvm: arm/arm64: Fix occasional warning from the timer work function (bnc#1012382 bsc#988524).\n- kvm: nVMX: VMCLEAR should not cause the vCPU to shut down (bnc#1012382).\n- kvm: nVMX: reset nested_run_pending if the vCPU is going to be reset (bnc#1012382).\n- kvm: pci-assign: do not map smm memory slot pages in vt-d page tables (bnc#1012382).\n- kvm: s390: wire up bpb feature (bsc#1076806).\n- kvm: vmx: Scrub hardware GPRs at VM-exit (bnc#1012382).\n- kvm: x86: Add memory barrier on vmcs field lookup (bnc#1012382).\n- kvm: x86: Exit to user-mode on #UD intercept when emulator requires (bnc#1012382).\n- kvm: x86: correct async page present tracepoint (bnc#1012382).\n- kvm: x86: fix RSM when PCID is non-zero (bnc#1012382).\n- kvm: x86: inject exceptions produced by x86_decode_insn (bnc#1012382).\n- kvm: x86: pvclock: Handle first-time write to pvclock-page contains random junk (bnc#1012382).\n- l2tp: cleanup l2tp_tunnel_delete calls (bnc#1012382).\n- lan78xx: Fix failure in USB Full Speed (bnc#1012382).\n- lib/genalloc.c: make the avail variable an atomic_long_t (bnc#1012382).\n- libata: apply MAX_SEC_1024 to all LITEON EP1 series devices (bnc#1012382).\n- libata: drop WARN from protocol error in ata_sff_qc_issue() (bnc#1012382).\n- macvlan: Only deliver one copy of the frame to the macvlan interface (bnc#1012382).\n- md-cluster: free md_cluster_info if node leave cluster (bnc#1012382).\n- media: dvb: i2c transfers over usb cannot be done from stack (bnc#1012382).\n- mfd: cros ec: spi: Do not send first message too soon (bnc#1012382).\n- mfd: twl4030-audio: Fix sibling-node lookup (bnc#1012382).\n- mfd: twl6040: Fix child-node lookup (bnc#1012382).\n- mlxsw: reg: Fix SPVM max record count (bnc#1012382).\n- mlxsw: reg: Fix SPVMLR max record count (bnc#1012382).\n- mm/mmap.c: do not blow on PROT_NONE MAP_FIXED holes in the stack (bnc#1012382).\n- mm/vmstat: Make NR_TLB_REMOTE_FLUSH_RECEIVED available even on UP (bnc#1012382).\n- mm: Handle 0 flags in _calc_vm_trans() macro (bnc#1012382).\n- mm: Introduce lm_alias (bsc#1068032).\n- mm: avoid returning VM_FAULT_RETRY from -\u003epage_mkwrite handlers (bnc#1012382).\n- mm: drop unused pmdp_huge_get_and_clear_notify() (bnc#1012382).\n- mmc: core: Do not leave the block driver in a suspended state (bnc#1012382).\n- mmc: mediatek: Fixed bug where clock frequency could be set wrong (bnc#1012382).\n- module: set __jump_table alignment to 8 (bnc#1012382).\n- more bio_map_user_iov() leak fixes (bnc#1012382).\n- mtd: nand: Fix writing mtdoops to nand flash (bnc#1012382).\n- n_tty: fix EXTPROC vs ICANON interaction with TIOCINQ (aka FIONREAD) (bnc#1012382).\n- net/appletalk: Fix kernel memory disclosure (bnc#1012382).\n- net/mac80211/debugfs.c: prevent build failure with CONFIG_UBSAN=y (bnc#1012382).\n- net/packet: fix a race in packet_bind() and packet_notifier() (bnc#1012382).\n- net: Allow neigh contructor functions ability to modify the primary_key (bnc#1012382).\n- net: Do not allow negative values for busy_read and busy_poll sysctl interfaces (bnc#1012382).\n- net: Fix double free and memory corruption in get_net_ns_by_id() (bnc#1012382).\n- net: Resend IGMP memberships upon peer notification (bnc#1012382).\n- net: bcmgenet: Power up the internal PHY before probing the MII (bnc#1012382).\n- net: bcmgenet: correct MIB access of UniMAC RUNT counters (bnc#1012382).\n- net: bcmgenet: correct the RBUF_OVFL_CNT and RBUF_ERR_CNT MIB values (bnc#1012382).\n- net: bcmgenet: power down internal phy if open or resume fails (bnc#1012382).\n- net: bcmgenet: reserved phy revisions must be checked first (bnc#1012382).\n- net: bridge: fix early call to br_stp_change_bridge_id and plug newlink leaks (bnc#1012382).\n- net: core: fix module type in sock_diag_bind (bnc#1012382).\n- net: fec: fix multicast filtering hardware setup (bnc#1012382).\n- net: igmp: Use correct source address on IGMPv3 reports (bnc#1012382).\n- net: igmp: fix source address check for IGMPv3 reports (bnc#1012382).\n- net: initialize msg.msg_flags in recvfrom (bnc#1012382).\n- net: ipv4: fix for a race condition in raw_sendmsg (bnc#1012382).\n- net: mvmdio: disable/unprepare clocks in EPROBE_DEFER case (bnc#1012382).\n- net: mvneta: clear interface link status on port disable (bnc#1012382).\n- net: phy: at803x: Change error to EINVAL for invalid MAC (bnc#1012382).\n- net: phy: micrel: ksz9031: reconfigure autoneg after phy autoneg workaround (bnc#1012382).\n- net: qdisc_pkt_len_init() should be more robust (bnc#1012382).\n- net: qmi_wwan: Add USB IDs for MDM6600 modem on Motorola Droid 4 (bnc#1012382).\n- net: qmi_wwan: add Sierra EM7565 1199:9091 (bnc#1012382).\n- net: reevalulate autoflowlabel setting after sysctl setting (bnc#1012382).\n- net: sctp: fix array overrun read on sctp_timer_tbl (bnc#1012382).\n- net: stmmac: enable EEE in MII, GMII or RGMII only (bnc#1012382).\n- net: systemport: Pad packet before inserting TSB (bnc#1012382).\n- net: systemport: Utilize skb_put_padto() (bnc#1012382).\n- net: tcp: close sock if net namespace is exiting (bnc#1012382).\n- net: wimax/i2400m: fix NULL-deref at probe (bnc#1012382).\n- netfilter: bridge: honor frag_max_size when refragmenting (bnc#1012382).\n- netfilter: do not track fragmented packets (bnc#1012382).\n- netfilter: ipvs: Fix inappropriate output of procfs (bnc#1012382).\n- netfilter: nfnetlink_queue: fix secctx memory leak (bnc#1012382).\n- netfilter: nfnetlink_queue: fix timestamp attribute (bsc#1074134).\n- netfilter: nfnl_cthelper: Fix memory leak (bnc#1012382).\n- netfilter: nfnl_cthelper: fix a race when walk the nf_ct_helper_hash table (bnc#1012382).\n- netfilter: nfnl_cthelper: fix runtime expectation policy updates (bnc#1012382).\n- netlink: add a start callback for starting a netlink dump (bnc#1012382).\n- nfs: Do not take a reference on fl-\u003efl_file for LOCK operation (bnc#1012382).\n- nfs: Fix a typo in nfs_rename() (bnc#1012382).\n- nfs: improve shinking of access cache (bsc#1012917).\n- nfsd: Fix another OPEN stateid race (bnc#1012382).\n- nfsd: Fix stateid races between OPEN and CLOSE (bnc#1012382).\n- nfsd: Make init_open_stateid() a bit more whole (bnc#1012382).\n- nfsd: auth: Fix gid sorting when rootsquash enabled (bnc#1012382).\n- nfsd: fix nfsd_minorversion(.., NFSD_AVAIL) (bnc#1012382).\n- nfsd: fix nfsd_reset_versions for NFSv4 (bnc#1012382).\n- nfsv4.1 respect server\u0027s max size in CREATE_SESSION (bnc#1012382).\n- nfsv4: Fix client recovery when server reboots multiple times (bnc#1012382).\n- nohz: Prevent a timer interrupt storm in tick_nohz_stop_sched_tick() (bnc#1012382).\n- openrisc: fix issue handling 8 byte get_user calls (bnc#1012382).\n- packet: fix crash in fanout_demux_rollover() (bnc#1012382).\n- parisc: Fix alignment of pa_tlb_lock in assembly on 32-bit SMP kernel (bnc#1012382).\n- parisc: Hide Diva-built-in serial aux and graphics card (bnc#1012382).\n- partially revert tipc improve link resiliency when rps is activated (bsc#1068038).\n- pci / PM: Force devices to D0 in pci_pm_thaw_noirq() (bnc#1012382).\n- pci/AER: Report non-fatal errors only to the affected endpoint (bnc#1012382).\n- pci/PME: Handle invalid data when reading Root Status (bnc#1012382).\n- pci: Avoid bus reset if bridge itself is broken (bnc#1012382).\n- pci: Create SR-IOV virtfn/physfn links before attaching driver (bnc#1012382).\n- pci: Detach driver before procfs \u0026 sysfs teardown on device remove (bnc#1012382).\n- perf symbols: Fix symbols__fixup_end heuristic for corner cases (bnc#1012382).\n- perf test attr: Fix ignored test case result (bnc#1012382).\n- perf: xgene: Add support for SoC PMU version 3 (bsc#1076809).\n- perf: xgene: Include module.h (bsc#1076809).\n- perf: xgene: Move PMU leaf functions into function pointer structure (bsc#1076809).\n- perf: xgene: Parse PMU subnode from the match table (bsc#1076809).\n- perf: xgene: Remove unnecessary managed resources cleanup (bsc#1076809).\n- phy: work around \u0027phys\u0027 references to usb-nop-xceiv devices (bnc#1012382).\n- pinctrl: adi2: Fix Kconfig build problem (bnc#1012382).\n- pinctrl: st: add irq_request/release_resources callbacks (bnc#1012382).\n- pipe: avoid round_pipe_size() nr_pages overflow on 32-bit (bnc#1012382).\n- powerpc/64: Add macros for annotating the destination of rfid/hrfid (bsc#1068032, bsc#1075087).\n- powerpc/64: Convert fast_exception_return to use RFI_TO_USER/KERNEL (bsc#1068032, bsc#1075087).\n- powerpc/64: Convert the syscall exit path to use RFI_TO_USER/KERNEL (bsc#1068032, bsc#1075087).\n- powerpc/64s: Add EX_SIZE definition for paca exception save areas (bsc#1068032, bsc#1075087).\n- powerpc/64s: Add support for RFI flush of L1-D cache (bsc#1068032,  bsc#1075087).\n- powerpc/64s: Allow control of RFI flush via debugfs (bsc#1068032, bsc#1075087).\n- powerpc/64s: Convert slb_miss_common to use RFI_TO_USER/KERNEL (bsc#1068032, bsc#1075087).\n- powerpc/64s: Simple RFI macro conversions (bsc#1068032, bsc#1075087).\n- powerpc/64s: Support disabling RFI flush with no_rfi_flush and nopti (bsc#1068032, bsc#1075087).\n- powerpc/64s: Wire up cpu_show_meltdown() (bsc#1068032).\n- powerpc/asm: Allow including ppc_asm.h in asm files (bsc#1068032, bsc#1075087).\n- powerpc/ipic: Fix status get and status clear (bnc#1012382).\n- powerpc/perf/hv-24x7: Fix incorrect comparison in memord (bnc#1012382).\n- powerpc/perf: Dereference BHRB entries safely (bsc#1066223).\n- powerpc/powernv/cpufreq: Fix the frequency read by /proc/cpuinfo (bnc#1012382).\n- powerpc/powernv/ioda2: Gracefully fail if too many TCE levels requested (bnc#1012382).\n- powerpc/powernv: Check device-tree for RFI flush settings (bsc#1068032,  bsc#1075087).\n- powerpc/pseries/rfi-flush: Call setup_rfi_flush() after LPM migration (bsc#1068032, bsc#1075087).\n- powerpc/pseries: Introduce H_GET_CPU_CHARACTERISTICS (bsc#1068032, bsc#1075087).\n- powerpc/pseries: Query hypervisor for RFI flush settings (bsc#1068032,  bsc#1075087).\n- powerpc/pseries: include linux/types.h in asm/hvcall.h (bsc#1068032, bsc#1075087).\n- powerpc/pseries: rfi-flush: Call setup_rfi_flush() after LPM migration (bsc#1068032, bsc#1075087).\n- powerpc/rfi-flush: Add DEBUG_RFI config option (bsc#1068032, bsc#1075087).\n- powerpc/rfi-flush: Make setup_rfi_flush() not __init (bsc#1068032, bsc#1075087).\n- powerpc/rfi-flush: Move RFI flush fields out of the paca (unbreak kABI) (bsc#1068032, bsc#1075087).\n- powerpc/rfi-flush: Move the logic to avoid a redo into the sysfs code (bsc#1068032, bsc#1075087).\n- powerpc/rfi-flush: prevent crash when changing flush type to fallback after system boot (bsc#1068032, bsc#1075087).\n- ppp: Destroy the mutex when cleanup (bnc#1012382).\n- pppoe: take -\u003eneeded_headroom of lower device into account on xmit (bnc#1012382).\n- pti: unbreak EFI (bsc#1074709).\n- r8152: fix the list rx_done may be used without initialization (bnc#1012382).\n- r8152: prevent the driver from transmitting packets with carrier off (bnc#1012382).\n- r8169: fix memory corruption on retrieval of hardware statistics (bnc#1012382).\n- raid5: Set R5_Expanded on parity devices as well as data (bnc#1012382).\n- ravb: Remove Rx overflow log messages (bnc#1012382).\n- rbd: set max_segments to USHRT_MAX (bnc#1012382).\n- rdma/cma: Avoid triggering undefined behavior (bnc#1012382).\n- rdma/iser: Fix possible mr leak on device removal event (bnc#1012382).\n- rds: Fix NULL pointer dereference in __rds_rdma_map (bnc#1012382).\n- rds: Heap OOB write in rds_message_alloc_sgs() (bnc#1012382).\n- rds: null pointer dereference in rds_atomic_free_op (bnc#1012382).\n- regulator: Try to resolve regulators supplies on registration (bsc#1074847).\n- regulator: core: Rely on regulator_dev_release to free constraints (bsc#1074847).\n- regulator: da9063: Return an error code on probe failure (bsc#1074847).\n- regulator: pwm: Fix regulator ramp delay for continuous mode (bsc#1074847).\n- rfi-flush: Make DEBUG_RFI a CONFIG option (bsc#1068032, bsc#1075087).\n- ring-buffer: Mask out the info bits when returning buffer page length (bnc#1012382).\n- route: also update fnhe_genid when updating a route cache (bnc#1012382).\n- route: update fnhe_expires for redirect when the fnhe exists (bnc#1012382).\n- rtc: cmos: Initialize hpet timer before irq is registered (bsc#1077592).\n- rtc: pcf8563: fix output clock rate (bnc#1012382).\n- rtc: pl031: make interrupt optional (bnc#1012382).\n- rtc: set the alarm to the next expiring timer (bnc#1012382).\n- s390/pci: do not require AIS facility (bnc#1012382).\n- s390/qeth: no ETH header for outbound AF_IUCV (bnc#1012382).\n- s390/runtime instrumentation: simplify task exit handling (bnc#1012382).\n- s390: always save and restore all registers on context switch (bnc#1012382).\n- s390: fix compat system call table (bnc#1012382).\n- sch_dsmark: fix invalid skb_cow() usage (bnc#1012382).\n- sched/deadline: Make sure the replenishment timer fires in the next period (bnc#1012382).\n- sched/deadline: Throttle a constrained deadline task activated after the deadline (bnc#1012382).\n- sched/deadline: Use deadline instead of period when calculating overflow (bnc#1012382).\n- sched/deadline: Use the revised wakeup rule for suspending constrained dl tasks (bnc#1012382).\n- sched/deadline: Zero out positive runtime after throttling constrained tasks (git-fixes).\n- sched/rt: Do not pull from current CPU if only one CPU to pull (bnc#1022476).\n- scsi: bfa: integer overflow in debugfs (bnc#1012382).\n- scsi: check for device state in __scsi_remove_target() (bsc#1072589).\n- scsi: cxgb4i: fix Tx skb leak (bnc#1012382).\n- scsi: fixup kernel warning during rmmod() (bsc#1052360).\n- scsi: hpsa: cleanup sas_phy structures in sysfs when unloading (bnc#1012382).\n- scsi: hpsa: destroy sas transport properties before scsi_host (bnc#1012382).\n- scsi: libsas: align sata_device\u0027s rps_resp on a cacheline (bnc#1012382).\n- scsi: lpfc: Fix PT2PT PRLI reject (bnc#1012382).\n- scsi: lpfc: Fix crash during Hardware error recovery on SLI3 adapters (bnc#1012382).\n- scsi: lpfc: Fix secure firmware updates (bnc#1012382).\n- scsi: lpfc: PLOGI failures during NPIV testing (bnc#1012382).\n- scsi: mpt3sas: Fix IO error occurs on pulling out a drive from RAID1 volume created on two SATA drive (bnc#1012382).\n- scsi: sd: change allow_restart to bool in sysfs interface (bnc#1012382).\n- scsi: sd: change manage_start_stop to bool in sysfs interface (bnc#1012382).\n- scsi: sg: disable SET_FORCE_LOW_DMA (bnc#1012382).\n- scsi: sr: wait for the medium to become ready (bsc#1048585).\n- sctp: Replace use of sockets_allocated with specified macro (bnc#1012382).\n- sctp: do not allow the v4 socket to bind a v4mapped v6 address (bnc#1012382).\n- sctp: do not free asoc when it is already dead in sctp_sendmsg (bnc#1012382).\n- sctp: return error if the asoc has been peeled off in sctp_wait_for_sndbuf (bnc#1012382).\n- sctp: use the right sk after waking up from wait_buf sleep (bnc#1012382).\n- selftest/powerpc: Fix false failures for skipped tests (bnc#1012382).\n- selftests/x86/ldt_get: Add a few additional tests for limits (bnc#1012382).\n- selftests/x86: Add test_vsyscall (bnc#1012382).\n- serial: 8250: Preserve DLD[7:4] for PORT_XR17V35X (bnc#1012382).\n- serial: 8250_pci: Add Amazon PCI serial device ID (bnc#1012382).\n- series.conf: fix wrong bsc reference\n- series.conf: whitespace cleanup\n- sfc: do not warn on successful change of MAC (bnc#1012382).\n- sh_eth: fix SH7757 GEther initialization (bnc#1012382).\n- sh_eth: fix TSU resource handling (bnc#1012382).\n- sit: update frag_off info (bnc#1012382).\n- sock: free skb in skb_complete_tx_timestamp on error (bnc#1012382).\n- sparc64/mm: set fields in deferred pages (bnc#1012382).\n- spi: sh-msiof: Fix DMA transfer size check (bnc#1012382).\n- spi: xilinx: Detect stall with Unknown commands (bnc#1012382).\n- spi_ks8995: fix \u0027BUG: key accdaa28 not in .data!\u0027 (bnc#1012382).\n- staging: android: ashmem: fix a race condition in ASHMEM_SET_SIZE ioctl (bnc#1012382).\n- sunrpc: Fix rpc_task_begin trace point (bnc#1012382).\n- sunrpc: add RPCSEC_GSS hash_cred() function (bsc#1012917).\n- sunrpc: add auth_unix hash_cred() function (bsc#1012917).\n- sunrpc: add generic_auth hash_cred() function (bsc#1012917).\n- sunrpc: add hash_cred() function to rpc_authops struct (bsc#1012917).\n- sunrpc: replace generic auth_cred hash with auth-specific function (bsc#1012917).\n- sunrpc: use supplimental groups in auth hash (bsc#1012917).\n- sunxi-rsb: Include OF based modalias in device uevent (bnc#1012382).\n- sysfs/cpu: Add vulnerability folder (bnc#1012382).\n- sysfs/cpu: Fix typos in vulnerability documentation (bnc#1012382).\n- sysfs: spectre_v2, handle spec_ctrl (bsc#1075994 bsc#1075091).\n- sysrq : fix Show Regs call trace on ARM (bnc#1012382).\n- target/file: Do not return error for UNMAP if length is zero (bnc#1012382).\n- target/iscsi: Fix a race condition in iscsit_add_reject_from_cmd() (bnc#1012382).\n- target: Avoid early CMD_T_PRE_EXECUTE failures during ABORT_TASK (bnc#1012382).\n- target: Use system workqueue for ALUA transitions (bnc#1012382).\n- target: fix ALUA transition timeout handling (bnc#1012382).\n- target: fix race during implicit transition work flushes (bnc#1012382).\n- target:fix condition return in core_pr_dump_initiator_port() (bnc#1012382).\n- tcp md5sig: Use skb\u0027s saddr when replying to an incoming segment (bnc#1012382).\n- tcp: __tcp_hdrlen() helper (bnc#1012382).\n- tcp: correct memory barrier usage in tcp_check_space() (bnc#1012382).\n- tcp: fix under-evaluated ssthresh in TCP Vegas (bnc#1012382).\n- tg3: Fix rx hang on MTU change with 5717/5719 (bnc#1012382).\n- thermal/drivers/step_wise: Fix temperature regulation misbehavior (bnc#1012382).\n- thermal: hisilicon: Handle return value of clk_prepare_enable (bnc#1012382).\n- tipc: fix cleanup at module unload (bnc#1012382).\n- tipc: fix memory leak in tipc_accept_from_sock() (bnc#1012382).\n- tipc: improve link resiliency when rps is activated (bsc#1068038).\n- tracing: Allocate mask_str buffer dynamically (bnc#1012382).\n- tracing: Fix converting enum\u0027s from the map in trace_event_eval_update() (bnc#1012382).\n- tracing: Fix crash when it fails to alloc ring buffer (bnc#1012382).\n- tracing: Fix possible double free on failure of allocating trace buffer (bnc#1012382).\n- tracing: Remove extra zeroing out of the ring buffer page (bnc#1012382).\n- tty fix oops when rmmod 8250 (bnc#1012382).\n- uas: Always apply US_FL_NO_ATA_1X quirk to Seagate devices (bnc#1012382).\n- uas: ignore UAS for Norelsys NS1068(X) chips (bnc#1012382).\n- udf: Avoid overflow when session starts at large offset (bnc#1012382).\n- um: link vmlinux with -no-pie (bnc#1012382).\n- usb: Add device quirk for Logitech HD Pro Webcam C925e (bnc#1012382).\n- usb: Fix off by one in type-specific length check of BOS SSP capability (git-fixes).\n- usb: Increase usbfs transfer limit (bnc#1012382).\n- usb: add RESET_RESUME for ELSA MicroLink 56K (bnc#1012382).\n- usb: core: Add type-specific length check of BOS descriptors (bnc#1012382).\n- usb: core: prevent malicious bNumInterfaces overflow (bnc#1012382).\n- usb: devio: Prevent integer overflow in proc_do_submiturb() (bnc#1012382).\n- usb: fix usbmon BUG trigger (bnc#1012382).\n- usb: gadget: configs: plug memory leak (bnc#1012382).\n- usb: gadget: f_uvc: Sanity check wMaxPacketSize for SuperSpeed (bnc#1012382).\n- usb: gadget: ffs: Forbid usb_ep_alloc_request from sleeping (bnc#1012382).\n- usb: gadget: udc: remove pointer dereference after free (bnc#1012382).\n- usb: gadgetfs: Fix a potential memory leak in \u0027dev_config()\u0027 (bnc#1012382).\n- usb: hub: Cycle HUB power when initialization fails (bnc#1012382).\n- usb: misc: usb3503: make sure reset is low for at least 100us (bnc#1012382).\n- usb: musb: da8xx: fix babble condition handling (bnc#1012382).\n- usb: phy: isp1301: Add OF device ID table (bnc#1012382).\n- usb: phy: isp1301: Fix build warning when CONFIG_OF is disabled (git-fixes).\n- usb: phy: tahvo: fix error handling in tahvo_usb_probe() (bnc#1012382).\n- usb: quirks: Add no-lpm quirk for KY-688 USB 3.1 Type-C Hub (bnc#1012382).\n- usb: serial: cp210x: add IDs for LifeScan OneTouch Verio IQ (bnc#1012382).\n- usb: serial: cp210x: add new device ID ELV ALC 8xxx (bnc#1012382).\n- usb: serial: ftdi_sio: add id for Airbus DS P8GR (bnc#1012382).\n- usb: serial: option: add Quectel BG96 id (bnc#1012382).\n- usb: serial: option: add support for Telit ME910 PID 0x1101 (bnc#1012382).\n- usb: serial: option: adding support for YUGA CLM920-NC5 (bnc#1012382).\n- usb: serial: qcserial: add Sierra Wireless EM7565 (bnc#1012382).\n- usb: uas and storage: Add US_FL_BROKEN_FUA for another JMicron JMS567 ID (bnc#1012382).\n- usb: usbfs: Filter flags passed in from user space (bnc#1012382).\n- usb: usbip: Fix possible deadlocks reported by lockdep (bnc#1012382).\n- usb: xhci: Add XHCI_TRUST_TX_LENGTH for Renesas uPD720201 (bnc#1012382).\n- usb: xhci: fix panic in xhci_free_virt_devices_depth_first (bnc#1012382).\n- usbip: Fix implicit fallthrough warning (bnc#1012382).\n- usbip: Fix potential format overflow in userspace tools (bnc#1012382).\n- usbip: fix stub_rx: get_pipe() to validate endpoint number (bnc#1012382).\n- usbip: fix stub_rx: harden CMD_SUBMIT path to handle malicious input (bnc#1012382).\n- usbip: fix stub_send_ret_submit() vulnerability to null transfer_buffer (bnc#1012382).\n- usbip: fix usbip bind writing random string after command in match_busid (bnc#1012382).\n- usbip: prevent leaking socket pointer address in messages (bnc#1012382).\n- usbip: prevent vhci_hcd driver from leaking a socket pointer address (bnc#1012382).\n- usbip: remove kernel addresses from usb device and urb debug msgs (bnc#1012382).\n- usbip: stub: stop printing kernel pointer addresses in messages (bnc#1012382).\n- usbip: vhci: stop printing kernel pointer addresses in messages (bnc#1012382).\n- userfaultfd: selftest: vm: allow to build in vm/ directory (bnc#1012382).\n- userfaultfd: shmem: __do_fault requires VM_FAULT_NOPAGE (bnc#1012382).\n- video: fbdev: au1200fb: Release some resources if a memory allocation fails (bnc#1012382).\n- video: fbdev: au1200fb: Return an error code if a memory allocation fails (bnc#1012382).\n- virtio: release virtio index when fail to device_register (bnc#1012382).\n- vmxnet3: repair memory leak (bnc#1012382).\n- vsyscall: Fix permissions for emulate mode with KAISER/PTI (bnc#1012382).\n- vt6655: Fix a possible sleep-in-atomic bug in vt6655_suspend (bnc#1012382).\n- vti6: Do not report path MTU below IPV6_MIN_MTU (bnc#1012382).\n- vti6: fix device register to report IFLA_INFO_KIND (bnc#1012382).\n- workqueue: trigger WARN if queue_delayed_work() is called with NULL @wq (bnc#1012382).\n- writeback: fix memory leak in wb_queue_work() (bnc#1012382).\n- x.509: fix buffer overflow detection in sprint_oid() (bsc#1075078).\n- x.509: reject invalid BIT STRING for subjectPublicKey (bnc#1012382).\n- x509: fix printing uninitialized stack memory when OID is empty (bsc#1075078).\n- x86/Documentation: Add PTI description (bnc#1012382).\n- x86/PCI: Make broadcom_postcore_init() check acpi_disabled (bnc#1012382).\n- x86/acpi: Handle SCI interrupts above legacy space gracefully (bsc#1068984).\n- x86/acpi: Reduce code duplication in mp_override_legacy_irq() (bsc#1068984).\n- x86/alternatives: Add missing \u0027\\n\u0027 at end of ALTERNATIVE inline asm (bnc#1012382).\n- x86/alternatives: Fix optimize_nops() checking (bnc#1012382).\n- x86/apic/vector: Fix off by one in error path (bnc#1012382).\n- x86/asm/32: Make sync_core() handle missing CPUID on all 32-bit kernels (bnc#1012382).\n- x86/boot: Fix early command-line parsing when matching at end (bsc#1068032).\n- x86/cpu, x86/pti: Do not enable PTI on AMD processors (bnc#1012382).\n- x86/cpu: Factor out application of forced CPU caps (bnc#1012382).\n- x86/cpu: Implement CPU vulnerabilites sysfs functions (bnc#1012382).\n- x86/cpu: Merge bugs.c and bugs_64.c (bnc#1012382).\n- x86/cpufeatures: Add X86_BUG_CPU_INSECURE (bnc#1012382).\n- x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] (bnc#1012382).\n- x86/cpufeatures: Make CPU bugs sticky (bnc#1012382).\n- x86/efi-bgrt: Fix kernel panic when mapping BGRT data (bnc#1012382).\n- x86/efi-bgrt: Replace early_memremap() with memremap() (bnc#1012382).\n- x86/efi: Build our own page table structures (bnc#1012382).\n- x86/efi: Hoist page table switching code into efi_call_virt() (bnc#1012382).\n- x86/entry: Use SYSCALL_DEFINE() macros for sys_modify_ldt() (bnc#1012382).\n- x86/hpet: Prevent might sleep splat on resume (bnc#1012382).\n- x86/kasan: Clear kasan_zero_page after TLB flush (bnc#1012382).\n- x86/kasan: Write protect kasan zero shadow (bnc#1012382).\n- x86/microcode/intel: Extend BDW late-loading further with LLC size check (bnc#1012382).\n- x86/microcode/intel: Extend BDW late-loading with a revision check (bnc#1012382).\n- x86/microcode/intel: Fix BDW late-loading revision check (bnc#1012382).\n- x86/mm/32: Move setup_clear_cpu_cap(X86_FEATURE_PCID) earlier (git-fixes).\n- x86/mm/pat: Ensure cpa-\u003epfn only contains page frame numbers (bnc#1012382).\n- x86/mm: Disable PCID on 32-bit kernels (bnc#1012382).\n- x86/pti/efi: broken conversion from efi to kernel page table (bnc#1012382).\n- x86/pti: Document fix wrong index (bnc#1012382).\n- x86/pti: Rename BUG_CPU_INSECURE to BUG_CPU_MELTDOWN (bnc#1012382).\n- x86/retpolines/spec_ctrl: disable IBRS on !SKL if retpolines are active (bsc#1068032).\n- x86/smpboot: Remove stale TLB flush invocations (bnc#1012382).\n- x86/spectre_v2: fix ordering in IBRS initialization (bsc#1075994 bsc#1075091).\n- x86/spectre_v2: nospectre_v2 means nospec too (bsc#1075994 bsc#1075091).\n- x86/tlb: Drop the _GPL from the cpu_tlbstate export (bnc#1012382).\n- x86/vm86/32: Switch to flush_tlb_mm_range() in mark_screen_rdonly() (bnc#1012382).\n- xen-netfront: Improve error handling during initialization (bnc#1012382).\n- xen-netfront: avoid crashing on resume after a failure in talk_to_netback() (bnc#1012382).\n- xfrm: Copy policy family in clone_policy (bnc#1012382).\n- xfs: Add infrastructure needed for error propagation during buffer IO failure (bsc#1068569).\n- xfs: Properly retry failed inode items in case of error during buffer writeback (bsc#1068569).\n- xfs: add \u0027fail at unmount\u0027 error handling configuration (bsc#1068569).\n- xfs: add configurable error support to metadata buffers (bsc#1068569).\n- xfs: add configuration handlers for specific errors (bsc#1068569).\n- xfs: add configuration of error failure speed (bsc#1068569).\n- xfs: address kabi for xfs buffer retry infrastructure (kabi).\n- xfs: configurable error behavior via sysfs (bsc#1068569).\n- xfs: fix incorrect extent state in xfs_bmap_add_extent_unwritten_real (bnc#1012382).\n- xfs: fix log block underflow during recovery cycle verification (bnc#1012382).\n- xfs: fix up inode32/64 (re)mount handling (bsc#1069160).\n- xfs: introduce metadata IO error class (bsc#1068569).\n- xfs: introduce table-based init for error behaviors (bsc#1068569).\n- xfs: remove xfs_trans_ail_delete_bulk (bsc#1068569).\n- xhci: Do not add a virt_dev to the devs array before it\u0027s fully allocated (bnc#1012382).\n- xhci: Fix ring leak in failure path of xhci_alloc_virt_device() (bnc#1012382).\n- xhci: plat: Register shutdown for xhci_plat (bnc#1012382).\n- zram: set physical queue limits to avoid array out of bounds accesses (bnc#1012382).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2018-285,SUSE-SLE-DESKTOP-12-SP2-2018-285,SUSE-SLE-HA-12-SP2-2018-285,SUSE-SLE-Live-Patching-12-2018-285,SUSE-SLE-RPI-12-SP2-2018-285,SUSE-SLE-SDK-12-SP2-2018-285,SUSE-SLE-SERVER-12-SP2-2018-285,SUSE-SLE-WE-12-SP2-2018-285",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0416-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:0416-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180416-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:0416-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-February/003721.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1012382",
        "url": "https://bugzilla.suse.com/1012382"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1012917",
        "url": "https://bugzilla.suse.com/1012917"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1019784",
        "url": "https://bugzilla.suse.com/1019784"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1022476",
        "url": "https://bugzilla.suse.com/1022476"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1031717",
        "url": "https://bugzilla.suse.com/1031717"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1038078",
        "url": "https://bugzilla.suse.com/1038078"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1038085",
        "url": "https://bugzilla.suse.com/1038085"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1043652",
        "url": "https://bugzilla.suse.com/1043652"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1048585",
        "url": "https://bugzilla.suse.com/1048585"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1052360",
        "url": "https://bugzilla.suse.com/1052360"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1060279",
        "url": "https://bugzilla.suse.com/1060279"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1066223",
        "url": "https://bugzilla.suse.com/1066223"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1066842",
        "url": "https://bugzilla.suse.com/1066842"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1068032",
        "url": "https://bugzilla.suse.com/1068032"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1068038",
        "url": "https://bugzilla.suse.com/1068038"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1068569",
        "url": "https://bugzilla.suse.com/1068569"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1068984",
        "url": "https://bugzilla.suse.com/1068984"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1069160",
        "url": "https://bugzilla.suse.com/1069160"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1070799",
        "url": "https://bugzilla.suse.com/1070799"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1072163",
        "url": "https://bugzilla.suse.com/1072163"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1072484",
        "url": "https://bugzilla.suse.com/1072484"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1072589",
        "url": "https://bugzilla.suse.com/1072589"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1073229",
        "url": "https://bugzilla.suse.com/1073229"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1073928",
        "url": "https://bugzilla.suse.com/1073928"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074134",
        "url": "https://bugzilla.suse.com/1074134"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074392",
        "url": "https://bugzilla.suse.com/1074392"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074488",
        "url": "https://bugzilla.suse.com/1074488"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074621",
        "url": "https://bugzilla.suse.com/1074621"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074709",
        "url": "https://bugzilla.suse.com/1074709"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074839",
        "url": "https://bugzilla.suse.com/1074839"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074847",
        "url": "https://bugzilla.suse.com/1074847"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075066",
        "url": "https://bugzilla.suse.com/1075066"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075078",
        "url": "https://bugzilla.suse.com/1075078"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075087",
        "url": "https://bugzilla.suse.com/1075087"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075091",
        "url": "https://bugzilla.suse.com/1075091"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075428",
        "url": "https://bugzilla.suse.com/1075428"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075617",
        "url": "https://bugzilla.suse.com/1075617"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075621",
        "url": "https://bugzilla.suse.com/1075621"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075627",
        "url": "https://bugzilla.suse.com/1075627"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1075994",
        "url": "https://bugzilla.suse.com/1075994"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076017",
        "url": "https://bugzilla.suse.com/1076017"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076110",
        "url": "https://bugzilla.suse.com/1076110"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076806",
        "url": "https://bugzilla.suse.com/1076806"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076809",
        "url": "https://bugzilla.suse.com/1076809"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076872",
        "url": "https://bugzilla.suse.com/1076872"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1076899",
        "url": "https://bugzilla.suse.com/1076899"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1077068",
        "url": "https://bugzilla.suse.com/1077068"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1077560",
        "url": "https://bugzilla.suse.com/1077560"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1077592",
        "url": "https://bugzilla.suse.com/1077592"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1078526",
        "url": "https://bugzilla.suse.com/1078526"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1078681",
        "url": "https://bugzilla.suse.com/1078681"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 963844",
        "url": "https://bugzilla.suse.com/963844"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 988524",
        "url": "https://bugzilla.suse.com/988524"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15129 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15129/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17712 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17712/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17862 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17862/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17864 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17864/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-18017 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-18017/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5715 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5715/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1000004 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1000004/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5332 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5332/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5333 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5333/"
      }
    ],
    "title": "Security update for the Linux Kernel",
    "tracking": {
      "current_release_date": "2018-02-09T15:27:09Z",
      "generator": {
        "date": "2018-02-09T15:27:09Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:0416-1",
      "initial_release_date": "2018-02-09T15:27:09Z",
      "revision_history": [
        {
          "date": "2018-02-09T15:27:09Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-4.4.114-92.64.1.aarch64",
                "product": {
                  "name": "kernel-default-4.4.114-92.64.1.aarch64",
                  "product_id": "kernel-default-4.4.114-92.64.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.4.114-92.64.1.aarch64",
                "product": {
                  "name": "kernel-default-base-4.4.114-92.64.1.aarch64",
                  "product_id": "kernel-default-base-4.4.114-92.64.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.4.114-92.64.1.aarch64",
                "product": {
                  "name": "kernel-default-devel-4.4.114-92.64.1.aarch64",
                  "product_id": "kernel-default-devel-4.4.114-92.64.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.4.114-92.64.1.aarch64",
                "product": {
                  "name": "kernel-syms-4.4.114-92.64.1.aarch64",
                  "product_id": "kernel-syms-4.4.114-92.64.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.4.114-92.64.1.aarch64",
                "product": {
                  "name": "kernel-obs-build-4.4.114-92.64.1.aarch64",
                  "product_id": "kernel-obs-build-4.4.114-92.64.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-4.4.114-92.64.1.noarch",
                "product": {
                  "name": "kernel-devel-4.4.114-92.64.1.noarch",
                  "product_id": "kernel-devel-4.4.114-92.64.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-4.4.114-92.64.1.noarch",
                "product": {
                  "name": "kernel-macros-4.4.114-92.64.1.noarch",
                  "product_id": "kernel-macros-4.4.114-92.64.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-4.4.114-92.64.1.noarch",
                "product": {
                  "name": "kernel-source-4.4.114-92.64.1.noarch",
                  "product_id": "kernel-source-4.4.114-92.64.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-docs-4.4.114-92.64.2.noarch",
                "product": {
                  "name": "kernel-docs-4.4.114-92.64.2.noarch",
                  "product_id": "kernel-docs-4.4.114-92.64.2.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
                "product": {
                  "name": "cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
                  "product_id": "cluster-md-kmp-default-4.4.114-92.64.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
                "product": {
                  "name": "cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
                  "product_id": "cluster-network-kmp-default-4.4.114-92.64.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-default-4.4.114-92.64.1.ppc64le",
                "product": {
                  "name": "dlm-kmp-default-4.4.114-92.64.1.ppc64le",
                  "product_id": "dlm-kmp-default-4.4.114-92.64.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
                "product": {
                  "name": "gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
                  "product_id": "gfs2-kmp-default-4.4.114-92.64.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
                "product": {
                  "name": "ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
                  "product_id": "ocfs2-kmp-default-4.4.114-92.64.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.4.114-92.64.1.ppc64le",
                "product": {
                  "name": "kernel-obs-build-4.4.114-92.64.1.ppc64le",
                  "product_id": "kernel-obs-build-4.4.114-92.64.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-4.4.114-92.64.1.ppc64le",
                "product": {
                  "name": "kernel-default-4.4.114-92.64.1.ppc64le",
                  "product_id": "kernel-default-4.4.114-92.64.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.4.114-92.64.1.ppc64le",
                "product": {
                  "name": "kernel-default-base-4.4.114-92.64.1.ppc64le",
                  "product_id": "kernel-default-base-4.4.114-92.64.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.4.114-92.64.1.ppc64le",
                "product": {
                  "name": "kernel-default-devel-4.4.114-92.64.1.ppc64le",
                  "product_id": "kernel-default-devel-4.4.114-92.64.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.4.114-92.64.1.ppc64le",
                "product": {
                  "name": "kernel-syms-4.4.114-92.64.1.ppc64le",
                  "product_id": "kernel-syms-4.4.114-92.64.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cluster-md-kmp-default-4.4.114-92.64.1.s390x",
                "product": {
                  "name": "cluster-md-kmp-default-4.4.114-92.64.1.s390x",
                  "product_id": "cluster-md-kmp-default-4.4.114-92.64.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "cluster-network-kmp-default-4.4.114-92.64.1.s390x",
                "product": {
                  "name": "cluster-network-kmp-default-4.4.114-92.64.1.s390x",
                  "product_id": "cluster-network-kmp-default-4.4.114-92.64.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-default-4.4.114-92.64.1.s390x",
                "product": {
                  "name": "dlm-kmp-default-4.4.114-92.64.1.s390x",
                  "product_id": "dlm-kmp-default-4.4.114-92.64.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-default-4.4.114-92.64.1.s390x",
                "product": {
                  "name": "gfs2-kmp-default-4.4.114-92.64.1.s390x",
                  "product_id": "gfs2-kmp-default-4.4.114-92.64.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-default-4.4.114-92.64.1.s390x",
                "product": {
                  "name": "ocfs2-kmp-default-4.4.114-92.64.1.s390x",
                  "product_id": "ocfs2-kmp-default-4.4.114-92.64.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.4.114-92.64.1.s390x",
                "product": {
                  "name": "kernel-obs-build-4.4.114-92.64.1.s390x",
                  "product_id": "kernel-obs-build-4.4.114-92.64.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-4.4.114-92.64.1.s390x",
                "product": {
                  "name": "kernel-default-4.4.114-92.64.1.s390x",
                  "product_id": "kernel-default-4.4.114-92.64.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.4.114-92.64.1.s390x",
                "product": {
                  "name": "kernel-default-base-4.4.114-92.64.1.s390x",
                  "product_id": "kernel-default-base-4.4.114-92.64.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.4.114-92.64.1.s390x",
                "product": {
                  "name": "kernel-default-devel-4.4.114-92.64.1.s390x",
                  "product_id": "kernel-default-devel-4.4.114-92.64.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-man-4.4.114-92.64.1.s390x",
                "product": {
                  "name": "kernel-default-man-4.4.114-92.64.1.s390x",
                  "product_id": "kernel-default-man-4.4.114-92.64.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.4.114-92.64.1.s390x",
                "product": {
                  "name": "kernel-syms-4.4.114-92.64.1.s390x",
                  "product_id": "kernel-syms-4.4.114-92.64.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-4.4.114-92.64.1.x86_64",
                "product": {
                  "name": "kernel-default-4.4.114-92.64.1.x86_64",
                  "product_id": "kernel-default-4.4.114-92.64.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.4.114-92.64.1.x86_64",
                "product": {
                  "name": "kernel-default-devel-4.4.114-92.64.1.x86_64",
                  "product_id": "kernel-default-devel-4.4.114-92.64.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-extra-4.4.114-92.64.1.x86_64",
                "product": {
                  "name": "kernel-default-extra-4.4.114-92.64.1.x86_64",
                  "product_id": "kernel-default-extra-4.4.114-92.64.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.4.114-92.64.1.x86_64",
                "product": {
                  "name": "kernel-syms-4.4.114-92.64.1.x86_64",
                  "product_id": "kernel-syms-4.4.114-92.64.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
                "product": {
                  "name": "cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
                  "product_id": "cluster-md-kmp-default-4.4.114-92.64.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
                "product": {
                  "name": "cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
                  "product_id": "cluster-network-kmp-default-4.4.114-92.64.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-default-4.4.114-92.64.1.x86_64",
                "product": {
                  "name": "dlm-kmp-default-4.4.114-92.64.1.x86_64",
                  "product_id": "dlm-kmp-default-4.4.114-92.64.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-default-4.4.114-92.64.1.x86_64",
                "product": {
                  "name": "gfs2-kmp-default-4.4.114-92.64.1.x86_64",
                  "product_id": "gfs2-kmp-default-4.4.114-92.64.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
                "product": {
                  "name": "ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
                  "product_id": "ocfs2-kmp-default-4.4.114-92.64.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
                "product": {
                  "name": "kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
                  "product_id": "kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.4.114-92.64.1.x86_64",
                "product": {
                  "name": "kernel-obs-build-4.4.114-92.64.1.x86_64",
                  "product_id": "kernel-obs-build-4.4.114-92.64.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.4.114-92.64.1.x86_64",
                "product": {
                  "name": "kernel-default-base-4.4.114-92.64.1.x86_64",
                  "product_id": "kernel-default-base-4.4.114-92.64.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Desktop 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Desktop 12 SP2",
                  "product_id": "SUSE Linux Enterprise Desktop 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sled:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Availability Extension 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise High Availability Extension 12 SP2",
                  "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-ha:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Live Patching 12",
                "product": {
                  "name": "SUSE Linux Enterprise Live Patching 12",
                  "product_id": "SUSE Linux Enterprise Live Patching 12",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-live-patching:12"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
                  "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Software Development Kit 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Software Development Kit 12 SP2",
                  "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-sdk:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP2",
                  "product_id": "SUSE Linux Enterprise Server 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:12:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Workstation Extension 12 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Workstation Extension 12 SP2",
                  "product_id": "SUSE Linux Enterprise Workstation Extension 12 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-we:12:sp2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-default-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-default-devel-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-extra-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-default-extra-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.4.114-92.64.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch"
        },
        "product_reference": "kernel-devel-4.4.114-92.64.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.4.114-92.64.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch"
        },
        "product_reference": "kernel-macros-4.4.114-92.64.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.4.114-92.64.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch"
        },
        "product_reference": "kernel-source-4.4.114-92.64.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
          "product_id": "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-syms-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-default-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-default-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x"
        },
        "product_reference": "cluster-md-kmp-default-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-default-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-network-kmp-default-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-network-kmp-default-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x"
        },
        "product_reference": "cluster-network-kmp-default-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-network-kmp-default-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-default-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "dlm-kmp-default-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-default-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x"
        },
        "product_reference": "dlm-kmp-default-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-default-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "dlm-kmp-default-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-default-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-default-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x"
        },
        "product_reference": "gfs2-kmp-default-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-default-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "gfs2-kmp-default-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-default-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-default-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x"
        },
        "product_reference": "ocfs2-kmp-default-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-default-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64 as component of SUSE Linux Enterprise Live Patching 12",
          "product_id": "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64"
        },
        "product_reference": "kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-92.64.1.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64"
        },
        "product_reference": "kernel-default-4.4.114-92.64.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-92.64.1.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64"
        },
        "product_reference": "kernel-default-base-4.4.114-92.64.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-92.64.1.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64"
        },
        "product_reference": "kernel-default-devel-4.4.114-92.64.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.4.114-92.64.1.noarch as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch"
        },
        "product_reference": "kernel-devel-4.4.114-92.64.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.4.114-92.64.1.noarch as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch"
        },
        "product_reference": "kernel-macros-4.4.114-92.64.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.4.114-92.64.1.noarch as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch"
        },
        "product_reference": "kernel-source-4.4.114-92.64.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-92.64.1.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64"
        },
        "product_reference": "kernel-syms-4.4.114-92.64.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-docs-4.4.114-92.64.2.noarch as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch"
        },
        "product_reference": "kernel-docs-4.4.114-92.64.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.4.114-92.64.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64"
        },
        "product_reference": "kernel-obs-build-4.4.114-92.64.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "kernel-obs-build-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x"
        },
        "product_reference": "kernel-obs-build-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-obs-build-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-92.64.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64"
        },
        "product_reference": "kernel-default-4.4.114-92.64.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "kernel-default-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x"
        },
        "product_reference": "kernel-default-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-default-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-92.64.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64"
        },
        "product_reference": "kernel-default-base-4.4.114-92.64.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "kernel-default-base-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x"
        },
        "product_reference": "kernel-default-base-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-default-base-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-92.64.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64"
        },
        "product_reference": "kernel-default-devel-4.4.114-92.64.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "kernel-default-devel-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x"
        },
        "product_reference": "kernel-default-devel-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-default-devel-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-man-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x"
        },
        "product_reference": "kernel-default-man-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.4.114-92.64.1.noarch as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch"
        },
        "product_reference": "kernel-devel-4.4.114-92.64.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.4.114-92.64.1.noarch as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch"
        },
        "product_reference": "kernel-macros-4.4.114-92.64.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.4.114-92.64.1.noarch as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch"
        },
        "product_reference": "kernel-source-4.4.114-92.64.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-92.64.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64"
        },
        "product_reference": "kernel-syms-4.4.114-92.64.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "kernel-syms-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x"
        },
        "product_reference": "kernel-syms-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
          "product_id": "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-syms-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-92.64.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64"
        },
        "product_reference": "kernel-default-4.4.114-92.64.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "kernel-default-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x"
        },
        "product_reference": "kernel-default-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-default-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-92.64.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64"
        },
        "product_reference": "kernel-default-base-4.4.114-92.64.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "kernel-default-base-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x"
        },
        "product_reference": "kernel-default-base-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-default-base-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-92.64.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64"
        },
        "product_reference": "kernel-default-devel-4.4.114-92.64.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "kernel-default-devel-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x"
        },
        "product_reference": "kernel-default-devel-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-default-devel-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-man-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x"
        },
        "product_reference": "kernel-default-man-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.4.114-92.64.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch"
        },
        "product_reference": "kernel-devel-4.4.114-92.64.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.4.114-92.64.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch"
        },
        "product_reference": "kernel-macros-4.4.114-92.64.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.4.114-92.64.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch"
        },
        "product_reference": "kernel-source-4.4.114-92.64.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-92.64.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64"
        },
        "product_reference": "kernel-syms-4.4.114-92.64.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-92.64.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le"
        },
        "product_reference": "kernel-syms-4.4.114-92.64.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-92.64.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x"
        },
        "product_reference": "kernel-syms-4.4.114-92.64.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-syms-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-extra-4.4.114-92.64.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP2",
          "product_id": "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
        },
        "product_reference": "kernel-default-extra-4.4.114-92.64.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-15129",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15129"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function get_net_ns_by_id() in net/core/net_namespace.c does not check for the net::count value after it has found a peer network in netns_ids idr, which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15129",
          "url": "https://www.suse.com/security/cve/CVE-2017-15129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074839 for CVE-2017-15129",
          "url": "https://bugzilla.suse.com/1074839"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-09T15:27:09Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-15129"
    },
    {
      "cve": "CVE-2017-17712",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17712"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The raw_sendmsg() function in net/ipv4/raw.c in the Linux kernel through 4.14.6 has a race condition in inet-\u003ehdrincl that leads to uninitialized stack pointer usage; this allows a local user to execute code and gain privileges.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17712",
          "url": "https://www.suse.com/security/cve/CVE-2017-17712"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073229 for CVE-2017-17712",
          "url": "https://bugzilla.suse.com/1073229"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073230 for CVE-2017-17712",
          "url": "https://bugzilla.suse.com/1073230"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-09T15:27:09Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-17712"
    },
    {
      "cve": "CVE-2017-17862",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17862"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 ignores unreachable code, even though it would still be processed by JIT compilers. This behavior, also considered an improper branch-pruning logic issue, could possibly be used by local users for denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17862",
          "url": "https://www.suse.com/security/cve/CVE-2017-17862"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17862",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-09T15:27:09Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17862"
    },
    {
      "cve": "CVE-2017-17864",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17864"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 mishandles states_equal comparisons between the pointer data type and the UNKNOWN_VALUE data type, which allows local users to obtain potentially sensitive address information, aka a \"pointer leak.\"",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17864",
          "url": "https://www.suse.com/security/cve/CVE-2017-17864"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17864",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-09T15:27:09Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17864"
    },
    {
      "cve": "CVE-2017-18017",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-18017"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and memory corruption) or possibly have unspecified other impact by leveraging the presence of xt_TCPMSS in an iptables action.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-18017",
          "url": "https://www.suse.com/security/cve/CVE-2017-18017"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074488 for CVE-2017-18017",
          "url": "https://bugzilla.suse.com/1074488"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080255 for CVE-2017-18017",
          "url": "https://bugzilla.suse.com/1080255"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2017-18017",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-18017",
          "url": "https://bugzilla.suse.com/1115893"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 971126 for CVE-2017-18017",
          "url": "https://bugzilla.suse.com/971126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-09T15:27:09Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-18017"
    },
    {
      "cve": "CVE-2017-5715",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5715"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5715",
          "url": "https://www.suse.com/security/cve/CVE-2017-5715"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074741 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074741"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074919 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075007 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075007"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075262 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075262"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075419 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075419"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076115 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076115"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076372 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076372"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076606 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1078353 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1078353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080039 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1080039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087887 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1088147 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1088147"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1095735 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1095735"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102517 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1102517"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105108 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1105108"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1126516 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1126516"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173489 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1173489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201457 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201457"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203236 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1203236"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-09T15:27:09Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5715"
    },
    {
      "cve": "CVE-2018-1000004",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1000004"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1000004",
          "url": "https://www.suse.com/security/cve/CVE-2018-1000004"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076017 for CVE-2018-1000004",
          "url": "https://bugzilla.suse.com/1076017"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-1000004",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-09T15:27:09Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-1000004"
    },
    {
      "cve": "CVE-2018-5332",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5332"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5332",
          "url": "https://www.suse.com/security/cve/CVE-2018-5332"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075621 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1075621"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.6,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-09T15:27:09Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-5332"
    },
    {
      "cve": "CVE-2018-5333",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5333"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
          "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5333",
          "url": "https://www.suse.com/security/cve/CVE-2018-5333"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075617 for CVE-2018-5333",
          "url": "https://bugzilla.suse.com/1075617"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-5333",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Desktop 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-md-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:cluster-network-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:dlm-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:gfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise High Availability Extension 12 SP2:ocfs2-kmp-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Live Patching 12:kgraft-patch-4_4_114-92_64-default-1-3.3.2.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-base-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-devel-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-default-man-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-devel-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-macros-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-source-4.4.114-92.64.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Server for SAP Applications 12 SP2:kernel-syms-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-docs-4.4.114-92.64.2.noarch",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.aarch64",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.s390x",
            "SUSE Linux Enterprise Software Development Kit 12 SP2:kernel-obs-build-4.4.114-92.64.1.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12 SP2:kernel-default-extra-4.4.114-92.64.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-02-09T15:27:09Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-5333"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2018-5332 (GCVE-0-2018-5332)

Tags

Sightings

Nomenclature