cvelistv5 - cve-2022-48879

CVE-2022-48879 (GCVE-0-2022-48879)

Vulnerability from cvelistv5

Published

2024-08-21 06:10

Modified

2025-05-04 12:43

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: efi: fix NULL-deref in init error path In cases where runtime services are not supported or have been disabled, the runtime services workqueue will never have been allocated. Do not try to destroy the workqueue unconditionally in the unlikely event that EFI initialisation fails to avoid dereferencing a NULL pointer.

References

►

URL

fkie_cve-2022-48879

Vulnerability from fkie_nvd

Published

2024-08-21 07:15

Modified

2024-08-29 02:39

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

References

URL	Tags
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/4ca71bc0e1995d15486cd7b60845602a28399cb5	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/585a0b2b3ae7903c6abee3087d09c69e955a7794	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/5fcf75a8a4c3e7ee9122d143684083c9faf20452	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/703c13fe3c9af557d312f5895ed6a5fda2711104	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/adc96d30f6503d30dc68670c013716f1d9fcc747	Patch
416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/e2ea55564229e4bea1474af15b111b3a3043b76f	Patch

Impacted products

Vendor	Product	Version
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*
linux	linux_kernel	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "843ACA9C-4BFF-4EF1-A27D-0641A19FAF65",
              "versionEndExcluding": "4.19.270",
              "versionStartIncluding": "4.19.142",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7133953F-C21D-45F4-951D-5FFE67BAF7C1",
              "versionEndExcluding": "5.4.229",
              "versionStartIncluding": "5.4.61",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "55D876B2-AC1A-44CD-BD2B-0E1D3EBBB963",
              "versionEndExcluding": "5.10.164",
              "versionStartIncluding": "5.9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E706841F-E788-4316-9B05-DA8EB60CE6B3",
              "versionEndExcluding": "5.15.89",
              "versionStartIncluding": "5.11",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9275C81F-AE96-4CDB-AD20-7DBD36E5D909",
              "versionEndExcluding": "6.1.7",
              "versionStartIncluding": "5.16",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi: fix NULL-deref in init error path\n\nIn cases where runtime services are not supported or have been disabled,\nthe runtime services workqueue will never have been allocated.\n\nDo not try to destroy the workqueue unconditionally in the unlikely\nevent that EFI initialisation fails to avoid dereferencing a NULL\npointer."
    },
    {
      "lang": "es",
      "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: efi: corrige NULL-deref en la ruta de error de inicio En los casos en los que los servicios de ejecuci\u00f3n no son compatibles o se han deshabilitado, la cola de trabajo de los servicios de ejecuci\u00f3n nunca se habr\u00e1 asignado. No intente destruir la cola de trabajo incondicionalmente en el improbable caso de que la inicializaci\u00f3n de EFI no pueda evitar la desreferenciaci\u00f3n de un puntero NULL."
    }
  ],
  "id": "CVE-2022-48879",
  "lastModified": "2024-08-29T02:39:34.370",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-08-21T07:15:04.690",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/4ca71bc0e1995d15486cd7b60845602a28399cb5"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/585a0b2b3ae7903c6abee3087d09c69e955a7794"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/5fcf75a8a4c3e7ee9122d143684083c9faf20452"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/703c13fe3c9af557d312f5895ed6a5fda2711104"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/adc96d30f6503d30dc68670c013716f1d9fcc747"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "tags": [
        "Patch"
      ],
      "url": "https://git.kernel.org/stable/c/e2ea55564229e4bea1474af15b111b3a3043b76f"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-476"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

suse-su-2024:3983-1

Vulnerability from csaf_suse

Published

2024-11-13 10:12

Modified

2024-11-13 10:12

Summary

Security update for the Linux Kernel

Notes

Title of the patch

Security update for the Linux Kernel

Description of the patch

The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-48879: efi: fix NULL-deref in init error path (bsc#1229556). - CVE-2022-48956: ipv6: avoid use-after-free in ip6_fragment() (bsc#1231893). - CVE-2022-48957: dpaa2-switch: Fix memory leak in dpaa2_switch_acl_entry_add() and dpaa2_switch_acl_entry_remove() (bsc#1231973). - CVE-2022-48958: ethernet: aeroflex: fix potential skb leak in greth_init_rings() (bsc#1231889). - CVE-2022-48959: net: dsa: sja1105: fix memory leak in sja1105_setup_devlink_regions() (bsc#1231976). - CVE-2022-48960: net: hisilicon: Fix potential use-after-free in hix5hd2_rx() (bsc#1231979). - CVE-2022-48962: net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (bsc#1232286). - CVE-2022-48966: net: mvneta: Fix an out of bounds check (bsc#1232191). - CVE-2022-48980: net: dsa: sja1105: avoid out of bounds access in sja1105_init_l2_policing() (bsc#1232233). - CVE-2022-48991: mm/khugepaged: fix collapse_pte_mapped_thp() to allow anon_vma (bsc#1232070 git-fix prerequisity). - CVE-2022-49015: net: hsr: Fix potential use-after-free (bsc#1231938). - CVE-2022-49017: tipc: re-fetch skb cb after tipc_msg_validate (bsc#1232004). - CVE-2022-49020: net/9p: Fix a potential socket leak in p9_socket_open (bsc#1232175). - CVE-2024-36244: net/sched: taprio: extend minimum interval restriction to entire cycle too (bsc#1226797). - CVE-2024-36957: octeontx2-af: avoid off-by-one read from userspace (bsc#1225762). - CVE-2024-39476: md/raid5: fix deadlock that raid5d() wait for itself to clear MD_SB_CHANGE_PENDING (bsc#1227437). - CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885). - CVE-2024-42226: Prevent potential failure in handle_tx_event() for Transfer events without TRB (bsc#1228709). - CVE-2024-42253: gpio: pca953x: fix pca953x_irq_bus_sync_unlock race (bsc#1229005 stable-fixes). - CVE-2024-44931: gpio: prevent potential speculation leaks in gpio_device_get_desc() (bsc#1229837 stable-fixes). - CVE-2024-44958: sched/smt: Fix unbalance sched_smt_present dec/inc (bsc#1230179). - CVE-2024-45016: netem: fix return value if duplicate enqueue fails (bsc#1230429). - CVE-2024-45025: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE (bsc#1230456). - CVE-2024-46716: dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (bsc#1230715). - CVE-2024-46754: bpf: Remove tst_run from lwt_seg6local_prog_ops (bsc#1230801). - CVE-2024-46777: udf: Avoid excessive partition lengths (bsc#1230773). - CVE-2024-46809: drm/amd/display: Check BIOS images before it is used (bsc#1231148). - CVE-2024-46811: drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (bsc#1231179). - CVE-2024-46813: drm/amd/display: Check link_index before accessing dc->links (bsc#1231191). - CVE-2024-46814: drm/amd/display: Check msg_id before processing transcation (bsc#1231193). - CVE-2024-46815: drm/amd/display: Check num_valid_sets before accessing reader_wm_sets (bsc#1231195). - CVE-2024-46816: drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links (bsc#1231197). - CVE-2024-46817: drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (bsc#1231200). - CVE-2024-46818: drm/amd/display: Check gpio_id before used as array index (bsc#1231203). - CVE-2024-46828: uprobes: fix kernel info leak via '[uprobes]' vma (bsc#1231114). - CVE-2024-46834: ethtool: fail closed if we can't get max channel used in indirection tables (bsc#1231096). - CVE-2024-46840: btrfs: clean up our handling of refs == 0 in snapshot delete (bsc#1231105). - CVE-2024-46841: btrfs: do not BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (bsc#1231094). - CVE-2024-46848: perf/x86/intel: Limit the period on Haswell (bsc#1231072). - CVE-2024-46849: ASoC: meson: axg-card: fix 'use-after-free' (bsc#1231073). - CVE-2024-47660: fsnotify: clear PARENT_WATCHED flags lazily (bsc#1231439). - CVE-2024-47661: drm/amd/display: Avoid overflow from uint32_t to uint8_t (bsc#1231496). - CVE-2024-47664: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware (bsc#1231442). - CVE-2024-47668: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (bsc#1231502). - CVE-2024-47672: wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (bsc#1231540). - CVE-2024-47673: wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (bsc#1231539). - CVE-2024-47674: mm: avoid leaving partial pfn mappings around in error case (bsc#1231673). - CVE-2024-47684: tcp: check skb is non-NULL in tcp_rto_delta_us() (bsc#1231987). - CVE-2024-47685: netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() (bsc#1231998). - CVE-2024-47692: nfsd: return -EINVAL when namelen is 0 (bsc#1231857). - CVE-2024-47704: drm/amd/display: Check link_res->hpo_dp_link_enc before using it (bsc#1231944). - CVE-2024-47705: block: fix potential invalid pointer dereference in blk_add_partition (bsc#1231872). - CVE-2024-47706: block, bfq: fix possible UAF for bfqq->bic with merge chain (bsc#1231942). - CVE-2024-47707: ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev() (bsc#1231935). - CVE-2024-47710: sock_map: Add a cond_resched() in sock_hash_free() (bsc#1232049). - CVE-2024-47720: drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (bsc#1232043). - CVE-2024-47727: x86/tdx: Fix 'in-kernel MMIO' check (bsc#1232116). - CVE-2024-47730: crypto: hisilicon/qm - inject error before stopping queue (bsc#1232075). - CVE-2024-47738: wifi: mac80211: do not use rate mask for offchannel TX either (bsc#1232114). - CVE-2024-47739: padata: use integer wrap around to prevent deadlock on seq_nr overflow (bsc#1232124). - CVE-2024-47745: mm: split critical region in remap_file_pages() and invoke LSMs in between (bsc#1232135). - CVE-2024-47747: net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition (bsc#1232145). - CVE-2024-47748: vhost_vdpa: assign irq bypass producer token correctly (bsc#1232174). - CVE-2024-49860: ACPI: sysfs: validate return type of _STR method (bsc#1231861). - CVE-2024-49866: tracing/timerlat: Fix a race during cpuhp processing (bsc#1232259). - CVE-2024-49881: ext4: update orig_path in ext4_find_extent() (bsc#1232201). - CVE-2024-49882: ext4: fix double brelse() the buffer of the extents path (bsc#1232200). - CVE-2024-49883: ext4: aovid use-after-free in ext4_ext_insert_extent() (bsc#1232199). - CVE-2024-49886: platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug (bsc#1232196). - CVE-2024-49890: drm/amd/pm: ensure the fw_info is not null before using it (bsc#1232217). - CVE-2024-49892: drm/amd/display: Initialize get_bytes_per_element's default to 1 (bsc#1232220). - CVE-2024-49896: drm/amd/display: Check stream before comparing them (bsc#1232221). - CVE-2024-49897: drm/amd/display: Check phantom_stream before it is used (bsc#1232355). - CVE-2024-49899: drm/amd/display: Initialize denominators' default to 1 (bsc#1232358). - CVE-2024-49901: drm/msm/adreno: Assign msm_gpu->pdev earlier to avoid nullptrs (bsc#1232305). - CVE-2024-49906: drm/amd/display: Check null pointer before try to access it (bsc#1232332). - CVE-2024-49909: drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func (bsc#1232337). - CVE-2024-49911: drm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func (bsc#1232366). - CVE-2024-49914: drm/amd/display: Add null check for pipe_ctx->plane_state in (bsc#1232369). - CVE-2024-49917: drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw (bsc#1231965). - CVE-2024-49918: drm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer (bsc#1231967). - CVE-2024-49919: drm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer (bsc#1231968). - CVE-2024-49920: drm/amd/display: Check null pointers before multiple uses (bsc#1232313). - CVE-2024-49922: drm/amd/display: Check null pointers before using them (bsc#1232374). - CVE-2024-49923: drm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags (bsc#1232361). - CVE-2024-49929: wifi: iwlwifi: mvm: avoid NULL pointer dereference (bsc#1232253). - CVE-2024-49930: wifi: ath11k: fix array out-of-bound access in SoC stats (bsc#1232260). - CVE-2024-49933: blk_iocost: fix more out of bound shifts (bsc#1232368). - CVE-2024-49936: net/xen-netback: prevent UAF in xenvif_flush_hash() (bsc#1232424). - CVE-2024-49939: wifi: rtw89: avoid to add interface to list twice when SER (bsc#1232381). - CVE-2024-49946: ppp: do not assume bh is held in ppp_channel_bridge_input() (bsc#1232164). - CVE-2024-49949: net: avoid potential underflow in qdisc_pkt_len_init() with UFO (bsc#1232160). - CVE-2024-49954: static_call: Replace pointless WARN_ON() in static_call_module_notify() (bsc#1232155). - CVE-2024-49955: ACPI: battery: Fix possible crash when unregistering a battery hook (bsc#1232154). - CVE-2024-49958: ocfs2: reserve space for inline xattr before attaching reflink tree (bsc#1232151). - CVE-2024-49959: jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error (bsc#1232149). - CVE-2024-49960: ext4: fix timer use-after-free on failed mount (bsc#1232395). - CVE-2024-49967: ext4: no need to continue when the number of entries is 1 (bsc#1232140). - CVE-2024-49969: drm/amd/display: Fix index out of bounds in DCN30 color transformation (bsc#1232519). - CVE-2024-49973: r8169: add tally counter fields added with RTL8125 (bsc#1232105). - CVE-2024-49974: NFSD: Force all NFSv4.2 COPY requests to be synchronous (bsc#1232383). - CVE-2024-49975: uprobes: fix kernel info leak via '[uprobes]' vma (bsc#1232104). - CVE-2024-49991: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (bsc#1232282). - CVE-2024-49993: iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count (bsc#1232316). - CVE-2024-49995: tipc: guard against string buffer overrun (bsc#1232432). - CVE-2024-49996: cifs: Fix buffer overflow when parsing NFS reparse points (bsc#1232089). - CVE-2024-50000: net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() (bsc#1232085). - CVE-2024-50001: net/mlx5: Fix error path in multi-packet WQE transmit (bsc#1232084). - CVE-2024-50002: static_call: Handle module init failure correctly in static_call_del_module() (bsc#1232083). - CVE-2024-50006: ext4: fix i_data_sem unlock order in ext4_ind_migrate() (bsc#1232442). - CVE-2024-50014: ext4: fix access to uninitialised lock in fc replay path (bsc#1232446). - CVE-2024-50019: kthread: unpark only parked kthread (bsc#1231990). - CVE-2024-50024: net: Fix an unsafe loop on the list (bsc#1231954). - CVE-2024-50028: thermal: core: Reference count the zone in thermal_zone_get_by_id() (bsc#1231950). - CVE-2024-50033: slip: make slhc_remember() more robust against malicious packets (bsc#1231914). - CVE-2024-50035: ppp: fix ppp_async_encode() illegal access (bsc#1232392). - CVE-2024-50041: i40e: Fix macvlan leak by synchronizing access to mac_filter_hash (bsc#1231907). - CVE-2024-50045: netfilter: br_netfilter: fix panic with metadata_dst skb (bsc#1231903). - CVE-2024-50046: kabi fix for NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies() (bsc#1231902). - CVE-2024-50047: smb: client: fix UAF in async decryption (bsc#1232418). - CVE-2024-50048: fbcon: Fix a NULL pointer dereference issue in fbcon_putcs (bsc#1232310). - CVE-2024-50055: driver core: bus: Fix double free in driver API bus_register() (bsc#1232329). - CVE-2024-50058: serial: protect uart_port_dtr_rts() in uart_shutdown() too (bsc#1232285). - CVE-2024-50059: ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (bsc#1232345). - CVE-2024-50061: i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition (bsc#1232263). - CVE-2024-50063: kABI: bpf: struct bpf_map kABI workaround (bsc#1232435). - CVE-2024-50081: blk-mq: setup queue ->tag_set before initializing hctx (bsc#1232501). The following non-security bugs were fixed: - ACPI: EC: Do not release locks during operation region accesses (stable-fixes). - ACPI: PAD: fix crash in exit_round_robin() (stable-fixes). - ACPI: PRM: Clean up guid type in struct prm_handler_info (git-fixes). - ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context (git-fixes). - ACPI: battery: Call power_supply_changed() when adding hooks (bsc#1232154) - ACPI: battery: Simplify battery hook locking (bsc#1232154) - ACPI: resource: Add Asus ExpertBook B2502CVA to irq1_level_low_skip_override[] (stable-fixes). - ACPI: resource: Add Asus Vivobook X1704VAP to irq1_level_low_skip_override[] (stable-fixes). - ACPI: resource: Add another DMI match for the TongFang GMxXGxx (stable-fixes). - ACPICA: Fix memory leak if acpi_ps_get_next_field() fails (stable-fixes). - ACPICA: Fix memory leak if acpi_ps_get_next_namepath() fails (stable-fixes). - ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() (stable-fixes). - ACPICA: iasl: handle empty connection_node (stable-fixes). - ALSA: asihpi: Fix potential OOB array access (stable-fixes). - ALSA: core: add isascii() check to card ID generator (stable-fixes). - ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() (git-fixes). - ALSA: hda/conexant - Fix audio routing for HP EliteOne 1000 G2 (stable-fixes). - ALSA: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne 1000 G2 (git-fixes). - ALSA: hda/conexant: Fix conflicting quirk for System76 Pangolin (git-fixes). - ALSA: hda/cs8409: Fix possible NULL dereference (git-fixes). - ALSA: hda/generic: Unconditionally prefer preferred_dacs pairs (git-fixes). - ALSA: hda/realtek - FIxed ALC285 headphone no sound (stable-fixes). - ALSA: hda/realtek - Fixed ALC256 headphone no sound (stable-fixes). - ALSA: hda/realtek: Add a quirk for HP Pavilion 15z-ec200 (stable-fixes). - ALSA: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9 (stable-fixes). - ALSA: hda/realtek: Fix the push button function for the ALC257 (git-fixes). - ALSA: hda/realtek: Update default depop procedure (git-fixes). - ALSA: hda: Fix kctl->id initialization (git-fixes). - ALSA: hda: cs35l41: fix module autoloading (git-fixes). - ALSA: hdsp: Break infinite MIDI input flush loop (stable-fixes). - ALSA: line6: add hw monitor volume control to POD HD500X (stable-fixes). - ALSA: mixer_oss: Remove some incorrect kfree_const() usages (git-fixes). - ALSA: usb-audio: Add delay quirk for VIVO USB-C HEADSET (stable-fixes). - ALSA: usb-audio: Add input value sanity checks for standard types (stable-fixes). - ALSA: usb-audio: Add logitech Audio profile quirk (stable-fixes). - ALSA: usb-audio: Add native DSD support for Luxman D-08u (stable-fixes). - ALSA: usb-audio: Define macros for quirk table entries (stable-fixes). - ALSA: usb-audio: Replace complex quirk lines with macros (stable-fixes). - ASoC: allow module autoloading for table db1200_pids (stable-fixes). - ASoC: imx-card: Set card.owner to avoid a warning calltrace if SND=m (git-fixes). - ASoC: intel: fix module autoloading (stable-fixes). - ASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe() (git-fixes). - ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes). - ASoC: soc-pcm: Do not zero TDM masks in __soc_pcm_open() (git-fixes). - ASoC: tda7419: fix module autoloading (stable-fixes). - Bluetooth: Call iso_exit() on module unload (git-fixes). - Bluetooth: ISO: Fix multiple init when debugfs is disabled (git-fixes). - Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change (git-fixes). - Bluetooth: Remove debugfs directory on module init failure (git-fixes). - Bluetooth: bnep: fix wild-memory-access in proto_unregister (git-fixes). - Bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - Bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001 (git-fixes). - Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE (git-fixes). - HID: amd_sfh: Switch to device-managed dmam_alloc_coherent() (git-fixes). - HID: multitouch: Add support for GT7868Q (stable-fixes). - HID: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio (stable-fixes). - HID: plantronics: Workaround for an unexcepted opposite volume key (stable-fixes). - Input: adp5589-keys - fix NULL pointer dereference (git-fixes). - Input: adp5589-keys - fix adp5589_gpio_get_value() (git-fixes). - Input: ads7846 - ratelimit the spi_sync error message (stable-fixes). - Input: goodix - use the new soc_intel_is_byt() helper (stable-fixes). - Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes). - KVM: Fix coalesced_mmio_has_room() to avoid premature userspace exit (git-fixes). - KVM: Fix lockdep false negative during host resume (git-fixes). - KVM: Grab a reference to KVM for VM and vCPU stats file descriptors (git-fixes). - KVM: Optimize kvm_make_vcpus_request_mask() a bit (git-fixes). - KVM: Pre-allocate cpumasks for kvm_make_all_cpus_request_except() (git-fixes). - KVM: Reject overly excessive IDs in KVM_CREATE_VCPU (git-fixes). - KVM: SVM: Disallow guest from changing userspace's MSR_AMD64_DE_CFG value (git-fixes). - KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes). - KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes). - KVM: Unconditionally get a ref to /dev/kvm module when creating a VM (git-fixes). - KVM: Write the per-page 'segment' when clearing (part of) a guest page (git-fixes). - KVM: arm64: Add missing memory barriers when switching to pKVM's hyp pgd (git-fixes). - KVM: arm64: Allow AArch32 PSTATE.M to be restored as System mode (git-fixes). - KVM: arm64: Fix AArch32 register narrowing on userspace write (git-fixes). - KVM: arm64: GICv4: Do not perform a map to a mapped vLPI (git-fixes). - KVM: arm64: Invalidate EL1&0 TLB entries for all VMIDs in nvhe hyp init (git-fixes). - KVM: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes). - KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes). - KVM: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes). - KVM: arm64: vgic-its: Test for valid IRQ in MOVALL handler (git-fixes). - KVM: arm64: vgic-its: Test for valid IRQ in its_sync_lpi_pending_table() (git-fixes). - KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes). - KVM: arm64: vgic-v2: Use cpuid from userspace as vcpu_id (git-fixes). - KVM: arm64: vgic-v4: Restore pending state on host userspace write (git-fixes). - KVM: eventfd: Fix false positive RCU usage warning (git-fixes). - KVM: fix memoryleak in kvm_init() (git-fixes). - KVM: s390: Change virtual to physical address access in diag 0x258 handler (git-fixes bsc#1232631). - KVM: s390: gaccess: Check if guest address is in memslot (git-fixes bsc#1232630). - KVM: x86/mmu: Fold rmap_recycle into rmap_add (git-fixes). - KVM: x86/mmu: Rename slot_handle_leaf to slot_handle_level_4k (git-fixes). - KVM: x86: Use a stable condition around all VT-d PI paths (git-fixes). - Makefile.compiler: replace cc-ifversion with compiler-specific macros (bsc#1230414 bsc#1229450). - NFS: Avoid unnecessary rescanning of the per-server delegation list (git-fixes). - NFSD: Fix NFSv4's PUTPUBFH operation (git-fixes). - NFSD: Mark filecache 'down' if init fails (git-fixes). - NFSv3: only use NFS timeout for MOUNT when protocols are compatible (bsc#1231016). - NFSv4: Fix clearing of layout segments in layoutreturn (git-fixes). - PCI: Add ACS quirk for Qualcomm SA8775P (stable-fixes). - PCI: Add function 0 DMA alias quirk for Glenfly Arise chip (stable-fixes). - PCI: Fix pci_enable_acs() support for the ACS quirks (bsc#1229019). - PCI: Mark Creative Labs EMU20k2 INTx masking as broken (stable-fixes). - RDMA/bnxt_re: Add a check for memory allocation (git-fixes) - RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (git-fixes) - RDMA/bnxt_re: Fix incorrect AVID type in WQE structure (git-fixes) - RDMA/bnxt_re: Fix the GID table length (git-fixes) - RDMA/bnxt_re: Fix the max CQ WQEs for older adapters (git-fixes) - RDMA/bnxt_re: Fix the usage of control path spin locks (git-fixes) - RDMA/bnxt_re: Return more meaningful error (git-fixes) - RDMA/bnxt_re: synchronize the qp-handle table array (git-fixes) - RDMA/cxgb4: Dump vendor specific QP details (git-fixes) - RDMA/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP (git-fixes) - RDMA/hns: Remove unused abnormal interrupt of type RAS (git-fixes) - RDMA/irdma: Fix misspelling of 'accept*' (git-fixes) - RDMA/mad: Improve handling of timed out WRs of mad agent (git-fixes) - RDMA/mana_ib: use the correct page size for mapping user-mode doorbell page (git-fixes). - RDMA/mana_ib: use the correct page table index based on hardware page size (git-fixes). - RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down (git-fixes) - RDMA/rtrs-srv: Avoid null pointer deref during path establishment (git-fixes) - RDMA/srpt: Make slab cache names unique (git-fixes) - SUNRPC: Fix integer overflow in decode_rc_list() (git-fixes). - SUNRPC: Fixup gss_status tracepoint error output (git-fixes). - SUNRPC: clnt.c: Remove misleading comment (git-fixes). - USB: appledisplay: close race between probe and completion handler (stable-fixes). - USB: misc: cypress_cy7c63: check for short transfer (stable-fixes). - USB: misc: yurex: fix race between read and write (stable-fixes). - USB: serial: option: add Telit FN920C04 MBIM compositions (stable-fixes). - USB: serial: option: add support for Quectel EG916Q-GL (stable-fixes). - USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes). - Use pahole -j1 option for reproducible builds (bsc#1230414 bsc#1229450). - add bug reference for a mana change (bsc#1229769). - add bug references to existing mana changes (bsc#1232033, bsc#1232034, bsc#1232036). - afs: Revert 'afs: Hide silly-rename files from userspace' (git-fixes). - arm64: cputype: Add Neoverse-N3 definitions (git-fixes) - arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes). - arm64: errata: Expand speculative SSBS workaround once more (git-fixes) - arm64: esr: Define ESR_ELx_EC_* constants as UL (git-fixes) - arm64: probes: Fix simulate_ldr*_literal() (git-fixes) - arm64: probes: Fix uprobes for big-endian kernels (git-fixes) - arm64: probes: Remove broken LDR (literal) uprobe support (git-fixes) - block: print symbolic error name instead of error code (bsc#1231872). - bpf, lsm: Add disabled BPF LSM hook list (git-fixes). - bpf, net: Fix a potential race in do_sock_getsockopt() (git-fixes). - bpf, verifier: Correct tail_call_reachable for bpf prog (git-fixes). - bpf, x64: Remove tail call detection (git-fixes). - bpf,perf: Fix perf_event_detach_bpf_prog error handling (git-fixes). - bpf: Add --skip_encoding_btf_inconsistent_proto, --btf_gen_optimized to pahole flags for v1.25 (bsc#1230414 bsc#1229450). - bpf: Allow helpers to accept pointers with a fixed size (git-fixes). - bpf: Check for helper calls in check_subprogs() (git-fixes). - bpf: Fix bpf_strtol and bpf_strtoul helpers for 32bit (git-fixes). - bpf: Fix helper writes to read-only maps (git-fixes). - bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation (bsc#1231375). - bpf: Fix tailcall cases in test_bpf (git-fixes). - bpf: Improve check_raw_mode_ok test for MEM_UNINIT-tagged types (git-fixes). - bpf: Remove truncation test in bpf_strtol and bpf_strtoul helpers (git-fixes). - bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error (git-fixes). - bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos (git-fixes). - btf, scripts: Exclude Rust CUs with pahole (bsc#1230414 bsc#1229450). - bus: integrator-lm: fix OF node leak in probe() (git-fixes). - ceph: fix cap ref leak via netfs init_request (bsc#1231383). - clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885). - clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885). - comedi: ni_routing: tools: Check when the file could not be opened (stable-fixes). - cpufreq/amd-pstate: Fix amd_pstate mode switch on shared memory systems (git-fixes). - crypto: hisilicon - Remove pci_aer_clear_nonfatal_status() call (bsc#1232075) - crypto: hisilicon/qm - re-enable communicate interrupt before notifying PF (bsc#1232075) - debugfs: fix automount d_fsdata usage (git-fixes). - dn_route: set rt neigh to blackhole_netdev instead of loopback_dev in ifdown (bsc#1216813). - drbd: Add NULL check for net_conf to prevent dereference in state validation (git-fixes). - drbd: Fix atomicity violation in drbd_uuid_set_bm() (git-fixes). - driver core: bus: Return -EIO instead of 0 when show/store invalid bus attribute (stable-fixes). - drm/amd/amdgpu: Fix double unlock in amdgpu_mes_add_ring (git-fixes). - drm/amd/display: Add null check for 'afb' in amdgpu_dm_plane_handle_cursor_update (v2) (stable-fixes). - drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (stable-fixes). - drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes). - drm/amd/display: Check link_res->hpo_dp_link_enc before using it (bsc#1231944) - drm/amd/display: Check null pointer before dereferencing se (stable-fixes). - drm/amd/display: Check null pointers before using dc->clk_mgr (stable-fixes). - drm/amd/display: Check stream before comparing them (stable-fixes). - drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes). - drm/amd/display: Fix index out of bounds in DCN30 color transformation (stable-fixes). - drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation (stable-fixes). - drm/amd/display: Fix index out of bounds in degamma hardware format translation (stable-fixes). - drm/amd/display: Fix system hang while resume with TBT monitor (stable-fixes). - drm/amd/display: Handle null 'stream_status' in 'planes_changed_for_existing_stream' (stable-fixes). - drm/amd/display: Initialize get_bytes_per_element's default to 1 (stable-fixes). - drm/amd/display: Round calculated vtotal (stable-fixes). - drm/amd/display: Validate backlight caps are sane (stable-fixes). - drm/amd/pm: ensure the fw_info is not null before using it (stable-fixes). - drm/amd: Guard against bad data for ATIF ACPI method (git-fixes). - drm/amdgpu: Replace one-element array with flexible-array member (stable-fixes). - drm/amdgpu: add raven1 gfxoff quirk (stable-fixes). - drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes). - drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes). - drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes). - drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes). - drm/amdgpu: properly handle vbios fake edid sizing (git-fixes). - drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes). - drm/msm/dpu: do not always program merge_3d block (git-fixes). - drm/msm/dpu: make sure phys resources are properly initialized (git-fixes). - drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate calculation (git-fixes). - drm/msm: Allocate memory for disp snapshot with kvzalloc() (git-fixes). - drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() (git-fixes). - drm/printer: Allow NULL data in devcoredump printer (stable-fixes). - drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes). - drm/radeon: Fix encoder->possible_clones (git-fixes). - drm/radeon: Replace one-element array with flexible-array member (stable-fixes). - drm/radeon: properly handle vbios fake edid sizing (git-fixes). - drm/rockchip: define gamma registers for RK3399 (stable-fixes). - drm/rockchip: support gamma control on RK3399 (stable-fixes). - drm/sched: Add locking to drm_sched_entity_modify_sched (git-fixes). - drm/v3d: Stop the active perfmon before being destroyed (git-fixes). - drm/vc4: Stop the active perfmon before being destroyed (git-fixes). - drm/vmwgfx: Handle surface check failure correctly (git-fixes). - drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS (git-fixes). - drm: komeda: Fix an issue related to normalized zpos (stable-fixes). - efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption (stable-fixes). - erofs: avoid consecutive detection for Highmem memory (git-fixes). - erofs: avoid infinite loop in z_erofs_do_read_page() when reading beyond EOF (git-fixes). - erofs: fix pcluster use-after-free on UP platforms (git-fixes). - erofs: fix potential overflow calculating xattr_isize (git-fixes). - erofs: stop parsing non-compact HEAD index if clusterofs is invalid (git-fixes). - exportfs: use pr_debug for unreachable debug statements (git-fixes). - ext4: fix slab-use-after-free in ext4_split_extent_at() (bsc#1232201) - fat: fix uninitialized variable (git-fixes). - fbdev: pxafb: Fix possible use after free in pxafb_task() (stable-fixes). - fbdev: sisfb: Fix strbuf array overflow (stable-fixes). - fgraph: Change the name of cpuhp state to 'fgraph:online' (git-fixes). - fgraph: Fix missing unlock in register_ftrace_graph() (git-fixes). - fgraph: Use CPU hotplug mechanism to initialize idle shadow stacks (git-fixes). - filelock: fix potential use-after-free in posix_lock_inode (git-fixes). - firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes). - fs/namespace: fnic: Switch to use %ptTd (git-fixes). - fs/pipe: Fix lockdep false-positive in watchqueue pipe_write() (git-fixes). - fs: Fix file_set_fowner LSM hook inconsistencies (git-fixes). - gpio: aspeed: Add the flush write to ensure the write complete (git-fixes). - gpio: aspeed: Use devm_clk api to manage clock source (git-fixes). - gpio: davinci: fix lazy disable (git-fixes). - hid: intel-ish-hid: Fix uninitialized variable 'rv' in ish_fw_xfer_direct_dma (git-fixes). - hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event (git-fixes). - hwmon: (adm9240) Add missing dependency on REGMAP_I2C (git-fixes). - hwmon: (tmp513) Add missing dependency on REGMAP_I2C (git-fixes). - i2c: i801: Use a different adapter-name for IDF adapters (stable-fixes). - i2c: imx-lpi2c: return -EINVAL when i2c peripheral clk does not work (bsc#1227885). - i2c: imx-lpi2c: use bulk clk API (bsc#1227885). - i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume (git-fixes). - i2c: xiic: Fix RX IRQ busy check (stable-fixes). - i2c: xiic: Fix broken locking on tx_msg (stable-fixes). - i2c: xiic: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes). - i2c: xiic: Switch from waitqueue to completion (stable-fixes). - i2c: xiic: Try re-initialization on bus busy timeout (git-fixes). - i2c: xiic: Use devm_clk_get_enabled() (stable-fixes). - i2c: xiic: improve error message when transfer fails to start (stable-fixes). - i2c: xiic: xiic_xfer(): Fix runtime PM leak on error path (git-fixes). - ice: Unbind the workqueue (bsc#1231344). - iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig (git-fixes). - iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig (git-fixes). - iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig (git-fixes). - iio: hid-sensors: Fix an error handling path in _hid_sensor_set_report_latency() (git-fixes). - iio: light: opt3001: add missing full-scale range value (git-fixes). - iio: light: veml6030: fix ALS sensor resolution (git-fixes). - iio: light: veml6030: fix IIO device retrieval from embedded device (git-fixes). - iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes). - iommu/vt-d: Always reserve a domain ID for identity setup (git-fixes). - ipv6: blackhole_netdev needs snmp6 counters (bsc#1216813). - ipv6: give an IPv6 dev to blackhole_netdev (bsc#1216813). - jfs: Fix sanity check in dbMount (git-fixes). - jfs: Fix uaf in dbFreeBits (git-fixes). - jfs: Fix uninit-value access of new_ea in ea_buffer (git-fixes). - jfs: UBSAN: shift-out-of-bounds in dbFindBits (git-fixes). - jfs: check if leafidx greater than num leaves per dmap tree (git-fixes). - kABI: bpf: enum bpf_{type_flag,arg_type} kABI workaround (git-fixes). - kABI: bpf: struct bpf_func_proto kABI workaround (git-fixes). - kab: fix after net: add more sanity check in virtio_net_hdr_to_skb() (git-fixes). - kabi fix of KVM: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes). - kabi: fix after KVM: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes). - kabi: fix after kvm: add guest_state_{enter,exit}_irqoff() (git-fixes). - kbuild, bpf: Use test-ge check for v1.25-only pahole (bsc#1230414 bsc#1229450). - kbuild,bpf: Add module-specific pahole flags for distilled base BTF (bsc#1230414 bsc#1229450). - kbuild,bpf: Switch to using --btf_features for pahole v1.26 and later (bsc#1230414 bsc#1229450). - kbuild: add test-{ge,gt,le,lt} macros (bsc#1230414 bsc#1229450). - kbuild: avoid too many execution of scripts/pahole-flags.sh (bsc#1230414 bsc#1229450). - kbuild: bpf: Tell pahole to DECL_TAG kfuncs (bsc#1230414 bsc#1229450). - kvm/arm64: rework guest entry logic (git-fixes). - kvm: Add support for arch compat vm ioctls (git-fixes). - kvm: add guest_state_{enter,exit}_irqoff() (git-fixes). - media: videobuf2-core: clear memory related fields in __vb2_plane_dmabuf_put() (stable-fixes). - module: abort module loading when sysfs setup suffer errors (git-fixes). - nbd: fix race between timeout and normal completion (bsc#1230918). - net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX (bsc#1226797) - net: add more sanity check in virtio_net_hdr_to_skb() (git-fixes). - net: socket: suppress unused warning (git-fixes). - net: test for not too small csum_start in virtio_net_hdr_to_skb() (git-fixes). - net: usb: usbnet: fix name regression (git-fixes). - netdevsim: use cond_resched() in nsim_dev_trap_report_work() (git-fixes). - nfs: fix memory leak in error path of nfs4_do_reclaim (git-fixes). - nfsd: call cache_put if xdr_reserve_space returns NULL (git-fixes). - nfsd: fix delegation_blocked() to block correctly for at least 30 seconds (git-fixes). - nfsd: fix refcount leak when file is unhashed after being found (git-fixes). - nfsd: map the EBADMSG to nfserr_io to avoid warning (git-fixes). - nfsd: remove unneeded EEXIST error check in nfsd_do_file_acquire (git-fixes). - nfsd: return -EINVAL when namelen is 0 (git-fixes). - nilfs2: fix kernel bug due to missing clearing of buffer delay flag (git-fixes). - nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error (git-fixes). - ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir() (git-fixes). - ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (stable-fixes). - nvme-multipath: system fails to create generic nvme device (git-fixes). - nvme-pci: qdepth 1 quirk (git-fixes). - nvmet-auth: assign dh_key to NULL after kfree_sensitive (git-fixes). - ocfs2: fix the la space leak when unmounting an ocfs2 volume (git-fixes). - ocfs2: fix uninit-value in ocfs2_get_block() (git-fixes). - ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (git-fixes). - parport: Proper fix for array out-of-bounds access (git-fixes). - platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes). - platform/x86: touchscreen_dmi: add nanote-next quirk (stable-fixes). - power: reset: brcmstb: Do not go into infinite loop if reset fails (stable-fixes). - s390/sclp_vt220: Convert newlines to CRLF instead of LFCR (git-fixes bsc#1232632). - scsi: NCR5380: Check for phase match during PDMA fixup (git-fixes). - scsi: aacraid: Rearrange order of struct aac_srb_unit (git-fixes). - scsi: core: Fix the return value of scsi_logical_block_count() (git-fixes). - scsi: core: Handle devices which return an unusually large VPD page count (git-fixes). - scsi: core: alua: I/O errors for ALUA state transitions (git-fixes). - scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del() (git-fixes). - scsi: hpsa: Fix allocation size for Scsi_Host private data (git-fixes). - scsi: libsas: Fix exp-attached device scan after probe failure scanned in again after probe failed (git-fixes). - scsi: libsas: Fix the failure of adding phy with zero-address to port (git-fixes). - scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in lpfc_els_flush_cmd() (bsc#1232757). - scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance (bsc#1232757). - scsi: lpfc: Fix kref imbalance on fabric ndlps from dev_loss_tmo handler (bsc#1232757). - scsi: lpfc: Remove trailing space after \n newline (bsc#1232757). - scsi: lpfc: Restrict support for 32 byte CDBs to specific HBAs (git-fixes). - scsi: lpfc: Revise TRACE_EVENT log flag severities from KERN_ERR to KERN_WARNING (bsc#1232757). - scsi: lpfc: Support loopback tests with VMID enabled (bsc#1232757). - scsi: lpfc: Update lpfc version to 14.4.0.5 (bsc#1232757). - scsi: lpfc: Update phba link state conditional before sending CMF_SYNC_WQE (bsc#1232757). - scsi: mac_scsi: Disallow bus errors during PDMA send (git-fixes). - scsi: mac_scsi: Refactor polling loop (git-fixes). - scsi: mac_scsi: Revise printk(KERN_DEBUG ...) messages (git-fixes). - scsi: mpi3mr: Avoid IOMMU page faults on REPORT ZONES (git-fixes). - scsi: mpi3mr: Fix ATA NCQ priority support (git-fixes). - scsi: mpt3sas: Avoid IOMMU page faults on REPORT ZONES (git-fixes). - scsi: qedf: Set qed_slowpath_params to zero before use (git-fixes). - scsi: smartpqi: correct stream detection (git-fixes). - scsi: smartpqi: revert propagate-the-multipath-failure-to-SML-quickly (git-fixes). - scsi: spi: Fix sshdr use (git-fixes). - scsi: wd33c93: Do not use stale scsi_pointer value (git-fixes). - selftests/bpf: Add a test case to write mtu result into .rodata (git-fixes). - selftests/bpf: Add a test case to write strtol result into .rodata (git-fixes). - selftests/bpf: Fix ARG_PTR_TO_LONG {half-,}uninitialized test (git-fixes). - selftests/bpf: Rename ARG_PTR_TO_LONG test description (git-fixes). - selftests/bpf: test for malformed BPF_CORE_TYPE_ID_LOCAL relocation (git-fixes). - spi: bcm63xx: Enable module autoloading (stable-fixes). - spi: bcm63xx: Fix module autoloading (git-fixes). - spi: lpspi: Silence error message upon deferred probe (stable-fixes). - spi: lpspi: Simplify some error message (git-fixes). - spi: lpspi: release requested DMA channels (stable-fixes). - spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes). - spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes). - spi: s3c64xx: fix timeout counters in flush_fifo (git-fixes). - spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes). - spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes). - spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes). - static_call: Do not make __static_call_return0 static (git-fixes). - tracing/hwlat: Fix a race during cpuhp processing (git-fixes). - tracing/uprobes: Use trace_event_buffer_reserve() helper (git-fixes). - tracing: Consider the NULL character when validating the event length (git-fixes). - uprobe: avoid out-of-bounds memory access of fetching args (git-fixes). - uprobes: encapsulate preparation of uprobe args buffer (git-fixes). - usb: chipidea: udc: enable suspend interrupt after usb reset (stable-fixes). - usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the Crashkernel Scenario (stable-fixes). - usb: dwc3: core: Stop processing of pending events if controller is halted (git-fixes). - usb: gadget: core: force synchronous registration (git-fixes). - usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip (stable-fixes). - usb: typec: altmode should keep reference to parent (git-fixes). - usb: xhci: Fix problem with xhci resume from suspend (stable-fixes). - usb: yurex: Fix inconsistent locking bug in yurex_read() (git-fixes). - usb: yurex: Replace snprintf() with the safer scnprintf() variant (stable-fixes). - usbnet: ipheth: fix carrier detection in modes 1 and 4 (stable-fixes). - vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (git-fixes). - vhost_vdpa: assign irq bypass producer token correctly (git-fixes). - virtio-net: synchronize probe with ndo_set_features (git-fixes). - virtio_console: fix misc probe bugs (git-fixes). - virtio_net: fixing XDP for fully checksummed packets handling (git-fixes). - vmxnet3: add command to allow disabling of offloads (bsc#1226498). - vmxnet3: add latency measurement support in vmxnet3 (bsc#1226498). - vmxnet3: prepare for version 9 changes (bsc#1226498). - vmxnet3: update to version 9 (bsc#1226498). - vsock/virtio: fix packet delivery to tap device (git-fixes). - wifi: ath11k: fix array out-of-bound access in SoC stats (stable-fixes). - wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes). - wifi: ath9k: fix parameter check in ath9k_init_debug() (stable-fixes). - wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats() (stable-fixes). - wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit (stable-fixes). - wifi: iwlwifi: clear trans->state earlier upon error (stable-fixes). - wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes). - wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes). - wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext() (stable-fixes). - wifi: rtw88: select WANT_DEV_COREDUMP (stable-fixes). - x86/bugs: Do not use UNTRAIN_RET with IBPB on entry (git-fixes). - x86/bugs: Skip RSB fill at VMEXIT (git-fixes). - x86/cpufeatures: Add a IBPB_NO_RET BUG flag (git-fixes). - x86/cpufeatures: Define X86_FEATURE_AMD_IBPB_RET (git-fixes). - x86/entry: Have entry_ibpb() invalidate return predictions (git-fixes). - x86/hyperv: Set X86_FEATURE_TSC_KNOWN_FREQ when Hyper-V provides frequency (git-fixes). - x86/kaslr: Expose and use the end of the physical memory address space (bsc#1230405). - xfrm: set dst dev to blackhole_netdev instead of loopback_dev in ifdown (bsc#1216813). - xhci: Fix incorrect stream context type macro (git-fixes). - xhci: Mitigate failed set dequeue pointer commands (git-fixes).

Patchnames

SUSE-2024-3983,SUSE-SLE-Module-Public-Cloud-15-SP5-2024-3983,openSUSE-SLE-15.5-2024-3983

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2022-48879: efi: fix NULL-deref in init error path (bsc#1229556).\n- CVE-2022-48956: ipv6: avoid use-after-free in ip6_fragment() (bsc#1231893).\n- CVE-2022-48957: dpaa2-switch: Fix memory leak in dpaa2_switch_acl_entry_add() and dpaa2_switch_acl_entry_remove() (bsc#1231973).\n- CVE-2022-48958: ethernet: aeroflex: fix potential skb leak in greth_init_rings() (bsc#1231889).\n- CVE-2022-48959: net: dsa: sja1105: fix memory leak in sja1105_setup_devlink_regions() (bsc#1231976).\n- CVE-2022-48960: net: hisilicon: Fix potential use-after-free in hix5hd2_rx() (bsc#1231979).\n- CVE-2022-48962: net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (bsc#1232286).\n- CVE-2022-48966: net: mvneta: Fix an out of bounds check (bsc#1232191).\n- CVE-2022-48980: net: dsa: sja1105: avoid out of bounds access in sja1105_init_l2_policing() (bsc#1232233).\n- CVE-2022-48991: mm/khugepaged: fix collapse_pte_mapped_thp() to allow anon_vma (bsc#1232070 git-fix prerequisity).\n- CVE-2022-49015: net: hsr: Fix potential use-after-free (bsc#1231938).\n- CVE-2022-49017: tipc: re-fetch skb cb after tipc_msg_validate (bsc#1232004).\n- CVE-2022-49020: net/9p: Fix a potential socket leak in p9_socket_open (bsc#1232175).\n- CVE-2024-36244: net/sched: taprio: extend minimum interval restriction to entire cycle too (bsc#1226797).\n- CVE-2024-36957: octeontx2-af: avoid off-by-one read from userspace (bsc#1225762).\n- CVE-2024-39476: md/raid5: fix deadlock that raid5d() wait for itself to clear MD_SB_CHANGE_PENDING (bsc#1227437).\n- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).\n- CVE-2024-42226: Prevent potential failure in handle_tx_event() for Transfer events without TRB (bsc#1228709).\n- CVE-2024-42253: gpio: pca953x: fix pca953x_irq_bus_sync_unlock race (bsc#1229005 stable-fixes).\n- CVE-2024-44931: gpio: prevent potential speculation leaks in gpio_device_get_desc() (bsc#1229837 stable-fixes).\n- CVE-2024-44958: sched/smt: Fix unbalance sched_smt_present dec/inc (bsc#1230179).\n- CVE-2024-45016: netem: fix return value if duplicate enqueue fails (bsc#1230429).\n- CVE-2024-45025: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE (bsc#1230456).\n- CVE-2024-46716: dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (bsc#1230715).\n- CVE-2024-46754: bpf: Remove tst_run from lwt_seg6local_prog_ops (bsc#1230801).\n- CVE-2024-46777: udf: Avoid excessive partition lengths (bsc#1230773).\n- CVE-2024-46809: drm/amd/display: Check BIOS images before it is used (bsc#1231148).\n- CVE-2024-46811: drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (bsc#1231179).\n- CVE-2024-46813: drm/amd/display: Check link_index before accessing dc-\u003elinks (bsc#1231191).\n- CVE-2024-46814: drm/amd/display: Check msg_id before processing transcation (bsc#1231193).\n- CVE-2024-46815: drm/amd/display: Check num_valid_sets before accessing reader_wm_sets (bsc#1231195).\n- CVE-2024-46816: drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links (bsc#1231197).\n- CVE-2024-46817: drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (bsc#1231200).\n- CVE-2024-46818: drm/amd/display: Check gpio_id before used as array index (bsc#1231203).\n- CVE-2024-46828: uprobes: fix kernel info leak via \u0027[uprobes]\u0027 vma (bsc#1231114).\n- CVE-2024-46834: ethtool: fail closed if we can\u0027t get max channel used in indirection tables (bsc#1231096).\n- CVE-2024-46840: btrfs: clean up our handling of refs == 0 in snapshot delete (bsc#1231105).\n- CVE-2024-46841: btrfs: do not BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (bsc#1231094).\n- CVE-2024-46848: perf/x86/intel: Limit the period on Haswell (bsc#1231072).\n- CVE-2024-46849: ASoC: meson: axg-card: fix \u0027use-after-free\u0027 (bsc#1231073).\n- CVE-2024-47660: fsnotify: clear PARENT_WATCHED flags lazily (bsc#1231439).\n- CVE-2024-47661: drm/amd/display: Avoid overflow from uint32_t to uint8_t (bsc#1231496).\n- CVE-2024-47664: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware (bsc#1231442).\n- CVE-2024-47668: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (bsc#1231502).\n- CVE-2024-47672: wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (bsc#1231540).\n- CVE-2024-47673: wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (bsc#1231539).\n- CVE-2024-47674: mm: avoid leaving partial pfn mappings around in error case (bsc#1231673).\n- CVE-2024-47684: tcp: check skb is non-NULL in tcp_rto_delta_us() (bsc#1231987).\n- CVE-2024-47685: netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() (bsc#1231998).\n- CVE-2024-47692: nfsd: return -EINVAL when namelen is 0 (bsc#1231857).\n- CVE-2024-47704: drm/amd/display: Check link_res-\u003ehpo_dp_link_enc before using it (bsc#1231944).\n- CVE-2024-47705: block: fix potential invalid pointer dereference in blk_add_partition (bsc#1231872).\n- CVE-2024-47706: block, bfq: fix possible UAF for bfqq-\u003ebic with merge chain (bsc#1231942).\n- CVE-2024-47707: ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev() (bsc#1231935).\n- CVE-2024-47710: sock_map: Add a cond_resched() in sock_hash_free() (bsc#1232049).\n- CVE-2024-47720: drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (bsc#1232043).\n- CVE-2024-47727: x86/tdx: Fix \u0027in-kernel MMIO\u0027 check (bsc#1232116).\n- CVE-2024-47730: crypto: hisilicon/qm - inject error before stopping queue (bsc#1232075).\n- CVE-2024-47738: wifi: mac80211: do not use rate mask for offchannel TX either (bsc#1232114).\n- CVE-2024-47739: padata: use integer wrap around to prevent deadlock on seq_nr overflow (bsc#1232124).\n- CVE-2024-47745: mm: split critical region in remap_file_pages() and invoke LSMs in between (bsc#1232135).\n- CVE-2024-47747: net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition (bsc#1232145).\n- CVE-2024-47748: vhost_vdpa: assign irq bypass producer token correctly (bsc#1232174).\n- CVE-2024-49860: ACPI: sysfs: validate return type of _STR method (bsc#1231861).\n- CVE-2024-49866: tracing/timerlat: Fix a race during cpuhp processing (bsc#1232259).\n- CVE-2024-49881: ext4: update orig_path in ext4_find_extent() (bsc#1232201).\n- CVE-2024-49882: ext4: fix double brelse() the buffer of the extents path (bsc#1232200).\n- CVE-2024-49883: ext4: aovid use-after-free in ext4_ext_insert_extent() (bsc#1232199).\n- CVE-2024-49886: platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug (bsc#1232196).\n- CVE-2024-49890: drm/amd/pm: ensure the fw_info is not null before using it (bsc#1232217).\n- CVE-2024-49892: drm/amd/display: Initialize get_bytes_per_element\u0027s default to 1 (bsc#1232220).\n- CVE-2024-49896: drm/amd/display: Check stream before comparing them (bsc#1232221).\n- CVE-2024-49897: drm/amd/display: Check phantom_stream before it is used (bsc#1232355).\n- CVE-2024-49899: drm/amd/display: Initialize denominators\u0027 default to 1 (bsc#1232358).\n- CVE-2024-49901: drm/msm/adreno: Assign msm_gpu-\u003epdev earlier to avoid nullptrs (bsc#1232305).\n- CVE-2024-49906: drm/amd/display: Check null pointer before try to access it (bsc#1232332).\n- CVE-2024-49909: drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func (bsc#1232337).\n- CVE-2024-49911: drm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func (bsc#1232366).\n- CVE-2024-49914: drm/amd/display: Add null check for pipe_ctx-\u003eplane_state in (bsc#1232369).\n- CVE-2024-49917: drm/amd/display: Add NULL check for clk_mgr and clk_mgr-\u003efuncs in dcn30_init_hw (bsc#1231965).\n- CVE-2024-49918: drm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer (bsc#1231967).\n- CVE-2024-49919: drm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer (bsc#1231968).\n- CVE-2024-49920: drm/amd/display: Check null pointers before multiple uses (bsc#1232313).\n- CVE-2024-49922: drm/amd/display: Check null pointers before using them (bsc#1232374).\n- CVE-2024-49923: drm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags (bsc#1232361).\n- CVE-2024-49929: wifi: iwlwifi: mvm: avoid NULL pointer dereference (bsc#1232253).\n- CVE-2024-49930: wifi: ath11k: fix array out-of-bound access in SoC stats (bsc#1232260).\n- CVE-2024-49933: blk_iocost: fix more out of bound shifts (bsc#1232368).\n- CVE-2024-49936: net/xen-netback: prevent UAF in xenvif_flush_hash() (bsc#1232424).\n- CVE-2024-49939: wifi: rtw89: avoid to add interface to list twice when SER (bsc#1232381).\n- CVE-2024-49946: ppp: do not assume bh is held in ppp_channel_bridge_input() (bsc#1232164).\n- CVE-2024-49949: net: avoid potential underflow in qdisc_pkt_len_init() with UFO (bsc#1232160).\n- CVE-2024-49954: static_call: Replace pointless WARN_ON() in static_call_module_notify() (bsc#1232155).\n- CVE-2024-49955: ACPI: battery: Fix possible crash when unregistering a battery hook (bsc#1232154).\n- CVE-2024-49958: ocfs2: reserve space for inline xattr before attaching reflink tree (bsc#1232151).\n- CVE-2024-49959: jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error (bsc#1232149).\n- CVE-2024-49960: ext4: fix timer use-after-free on failed mount (bsc#1232395).\n- CVE-2024-49967: ext4: no need to continue when the number of entries is 1 (bsc#1232140).\n- CVE-2024-49969: drm/amd/display: Fix index out of bounds in DCN30 color transformation (bsc#1232519).\n- CVE-2024-49973: r8169: add tally counter fields added with RTL8125 (bsc#1232105).\n- CVE-2024-49974: NFSD: Force all NFSv4.2 COPY requests to be synchronous (bsc#1232383).\n- CVE-2024-49975: uprobes: fix kernel info leak via \u0027[uprobes]\u0027 vma (bsc#1232104).\n- CVE-2024-49991: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (bsc#1232282).\n- CVE-2024-49993: iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count (bsc#1232316).\n- CVE-2024-49995: tipc: guard against string buffer overrun (bsc#1232432).\n- CVE-2024-49996: cifs: Fix buffer overflow when parsing NFS reparse points (bsc#1232089).\n- CVE-2024-50000: net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() (bsc#1232085).\n- CVE-2024-50001: net/mlx5: Fix error path in multi-packet WQE transmit (bsc#1232084).\n- CVE-2024-50002: static_call: Handle module init failure correctly in static_call_del_module() (bsc#1232083).\n- CVE-2024-50006: ext4: fix i_data_sem unlock order in ext4_ind_migrate() (bsc#1232442).\n- CVE-2024-50014: ext4: fix access to uninitialised lock in fc replay path (bsc#1232446).\n- CVE-2024-50019: kthread: unpark only parked kthread (bsc#1231990).\n- CVE-2024-50024: net: Fix an unsafe loop on the list (bsc#1231954).\n- CVE-2024-50028: thermal: core: Reference count the zone in thermal_zone_get_by_id() (bsc#1231950).\n- CVE-2024-50033: slip: make slhc_remember() more robust against malicious packets (bsc#1231914).\n- CVE-2024-50035: ppp: fix ppp_async_encode() illegal access (bsc#1232392).\n- CVE-2024-50041: i40e: Fix macvlan leak by synchronizing access to mac_filter_hash (bsc#1231907).\n- CVE-2024-50045: netfilter: br_netfilter: fix panic with metadata_dst skb (bsc#1231903).\n- CVE-2024-50046: kabi fix for NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies() (bsc#1231902).\n- CVE-2024-50047: smb: client: fix UAF in async decryption (bsc#1232418).\n- CVE-2024-50048: fbcon: Fix a NULL pointer dereference issue in fbcon_putcs (bsc#1232310).\n- CVE-2024-50055: driver core: bus: Fix double free in driver API bus_register() (bsc#1232329).\n- CVE-2024-50058: serial: protect uart_port_dtr_rts() in uart_shutdown() too (bsc#1232285).\n- CVE-2024-50059: ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (bsc#1232345).\n- CVE-2024-50061: i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition (bsc#1232263).\n- CVE-2024-50063: kABI: bpf: struct bpf_map kABI workaround (bsc#1232435).\n- CVE-2024-50081: blk-mq: setup queue -\u003etag_set before initializing hctx (bsc#1232501).\n\nThe following non-security bugs were fixed:\n\n- ACPI: EC: Do not release locks during operation region accesses (stable-fixes).\n- ACPI: PAD: fix crash in exit_round_robin() (stable-fixes).\n- ACPI: PRM: Clean up guid type in struct prm_handler_info (git-fixes).\n- ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context (git-fixes).\n- ACPI: battery: Call power_supply_changed() when adding hooks (bsc#1232154)\n- ACPI: battery: Simplify battery hook locking (bsc#1232154)\n- ACPI: resource: Add Asus ExpertBook B2502CVA to irq1_level_low_skip_override[] (stable-fixes).\n- ACPI: resource: Add Asus Vivobook X1704VAP to irq1_level_low_skip_override[] (stable-fixes).\n- ACPI: resource: Add another DMI match for the TongFang GMxXGxx (stable-fixes).\n- ACPICA: Fix memory leak if acpi_ps_get_next_field() fails (stable-fixes).\n- ACPICA: Fix memory leak if acpi_ps_get_next_namepath() fails (stable-fixes).\n- ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() (stable-fixes).\n- ACPICA: iasl: handle empty connection_node (stable-fixes).\n- ALSA: asihpi: Fix potential OOB array access (stable-fixes).\n- ALSA: core: add isascii() check to card ID generator (stable-fixes).\n- ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() (git-fixes).\n- ALSA: hda/conexant - Fix audio routing for HP EliteOne 1000 G2 (stable-fixes).\n- ALSA: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne 1000 G2 (git-fixes).\n- ALSA: hda/conexant: Fix conflicting quirk for System76 Pangolin (git-fixes).\n- ALSA: hda/cs8409: Fix possible NULL dereference (git-fixes).\n- ALSA: hda/generic: Unconditionally prefer preferred_dacs pairs (git-fixes).\n- ALSA: hda/realtek - FIxed ALC285 headphone no sound (stable-fixes).\n- ALSA: hda/realtek - Fixed ALC256 headphone no sound (stable-fixes).\n- ALSA: hda/realtek: Add a quirk for HP Pavilion 15z-ec200 (stable-fixes).\n- ALSA: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9 (stable-fixes).\n- ALSA: hda/realtek: Fix the push button function for the ALC257 (git-fixes).\n- ALSA: hda/realtek: Update default depop procedure (git-fixes).\n- ALSA: hda: Fix kctl-\u003eid initialization (git-fixes).\n- ALSA: hda: cs35l41: fix module autoloading (git-fixes).\n- ALSA: hdsp: Break infinite MIDI input flush loop (stable-fixes).\n- ALSA: line6: add hw monitor volume control to POD HD500X (stable-fixes).\n- ALSA: mixer_oss: Remove some incorrect kfree_const() usages (git-fixes).\n- ALSA: usb-audio: Add delay quirk for VIVO USB-C HEADSET (stable-fixes).\n- ALSA: usb-audio: Add input value sanity checks for standard types (stable-fixes).\n- ALSA: usb-audio: Add logitech Audio profile quirk (stable-fixes).\n- ALSA: usb-audio: Add native DSD support for Luxman D-08u (stable-fixes).\n- ALSA: usb-audio: Define macros for quirk table entries (stable-fixes).\n- ALSA: usb-audio: Replace complex quirk lines with macros (stable-fixes).\n- ASoC: allow module autoloading for table db1200_pids (stable-fixes).\n- ASoC: imx-card: Set card.owner to avoid a warning calltrace if SND=m (git-fixes).\n- ASoC: intel: fix module autoloading (stable-fixes).\n- ASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe() (git-fixes).\n- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: soc-pcm: Do not zero TDM masks in __soc_pcm_open() (git-fixes).\n- ASoC: tda7419: fix module autoloading (stable-fixes).\n- Bluetooth: Call iso_exit() on module unload (git-fixes).\n- Bluetooth: ISO: Fix multiple init when debugfs is disabled (git-fixes).\n- Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change (git-fixes).\n- Bluetooth: Remove debugfs directory on module init failure (git-fixes).\n- Bluetooth: bnep: fix wild-memory-access in proto_unregister (git-fixes).\n- Bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- Bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001 (git-fixes).\n- Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE (git-fixes).\n- HID: amd_sfh: Switch to device-managed dmam_alloc_coherent() (git-fixes).\n- HID: multitouch: Add support for GT7868Q (stable-fixes).\n- HID: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio (stable-fixes).\n- HID: plantronics: Workaround for an unexcepted opposite volume key (stable-fixes).\n- Input: adp5589-keys - fix NULL pointer dereference (git-fixes).\n- Input: adp5589-keys - fix adp5589_gpio_get_value() (git-fixes).\n- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).\n- Input: goodix - use the new soc_intel_is_byt() helper (stable-fixes).\n- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).\n- KVM: Fix coalesced_mmio_has_room() to avoid premature userspace exit (git-fixes).\n- KVM: Fix lockdep false negative during host resume (git-fixes).\n- KVM: Grab a reference to KVM for VM and vCPU stats file descriptors (git-fixes).\n- KVM: Optimize kvm_make_vcpus_request_mask() a bit (git-fixes).\n- KVM: Pre-allocate cpumasks for kvm_make_all_cpus_request_except() (git-fixes).\n- KVM: Reject overly excessive IDs in KVM_CREATE_VCPU (git-fixes).\n- KVM: SVM: Disallow guest from changing userspace\u0027s MSR_AMD64_DE_CFG value (git-fixes).\n- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).\n- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).\n- KVM: Unconditionally get a ref to /dev/kvm module when creating a VM (git-fixes).\n- KVM: Write the per-page \u0027segment\u0027 when clearing (part of) a guest page (git-fixes).\n- KVM: arm64: Add missing memory barriers when switching to pKVM\u0027s hyp pgd (git-fixes).\n- KVM: arm64: Allow AArch32 PSTATE.M to be restored as System mode (git-fixes).\n- KVM: arm64: Fix AArch32 register narrowing on userspace write (git-fixes).\n- KVM: arm64: GICv4: Do not perform a map to a mapped vLPI (git-fixes).\n- KVM: arm64: Invalidate EL1\u00260 TLB entries for all VMIDs in nvhe hyp init (git-fixes).\n- KVM: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes).\n- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).\n- KVM: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes).\n- KVM: arm64: vgic-its: Test for valid IRQ in MOVALL handler (git-fixes).\n- KVM: arm64: vgic-its: Test for valid IRQ in its_sync_lpi_pending_table() (git-fixes).\n- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).\n- KVM: arm64: vgic-v2: Use cpuid from userspace as vcpu_id (git-fixes).\n- KVM: arm64: vgic-v4: Restore pending state on host userspace write (git-fixes).\n- KVM: eventfd: Fix false positive RCU usage warning (git-fixes).\n- KVM: fix memoryleak in kvm_init() (git-fixes).\n- KVM: s390: Change virtual to physical address access in diag 0x258 handler (git-fixes bsc#1232631).\n- KVM: s390: gaccess: Check if guest address is in memslot (git-fixes bsc#1232630).\n- KVM: x86/mmu: Fold rmap_recycle into rmap_add (git-fixes).\n- KVM: x86/mmu: Rename slot_handle_leaf to slot_handle_level_4k (git-fixes).\n- KVM: x86: Use a stable condition around all VT-d PI paths (git-fixes).\n- Makefile.compiler: replace cc-ifversion with compiler-specific macros (bsc#1230414 bsc#1229450).\n- NFS: Avoid unnecessary rescanning of the per-server delegation list (git-fixes).\n- NFSD: Fix NFSv4\u0027s PUTPUBFH operation (git-fixes).\n- NFSD: Mark filecache \u0027down\u0027 if init fails (git-fixes).\n- NFSv3: only use NFS timeout for MOUNT when protocols are compatible (bsc#1231016).\n- NFSv4: Fix clearing of layout segments in layoutreturn (git-fixes).\n- PCI: Add ACS quirk for Qualcomm SA8775P (stable-fixes).\n- PCI: Add function 0 DMA alias quirk for Glenfly Arise chip (stable-fixes).\n- PCI: Fix pci_enable_acs() support for the ACS quirks (bsc#1229019).\n- PCI: Mark Creative Labs EMU20k2 INTx masking as broken (stable-fixes).\n- RDMA/bnxt_re: Add a check for memory allocation (git-fixes)\n- RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (git-fixes)\n- RDMA/bnxt_re: Fix incorrect AVID type in WQE structure (git-fixes)\n- RDMA/bnxt_re: Fix the GID table length (git-fixes)\n- RDMA/bnxt_re: Fix the max CQ WQEs for older adapters (git-fixes)\n- RDMA/bnxt_re: Fix the usage of control path spin locks (git-fixes)\n- RDMA/bnxt_re: Return more meaningful error (git-fixes)\n- RDMA/bnxt_re: synchronize the qp-handle table array (git-fixes)\n- RDMA/cxgb4: Dump vendor specific QP details (git-fixes)\n- RDMA/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP (git-fixes)\n- RDMA/hns: Remove unused abnormal interrupt of type RAS (git-fixes)\n- RDMA/irdma: Fix misspelling of \u0027accept*\u0027 (git-fixes)\n- RDMA/mad: Improve handling of timed out WRs of mad agent (git-fixes)\n- RDMA/mana_ib: use the correct page size for mapping user-mode doorbell page (git-fixes).\n- RDMA/mana_ib: use the correct page table index based on hardware page size (git-fixes).\n- RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down (git-fixes)\n- RDMA/rtrs-srv: Avoid null pointer deref during path establishment (git-fixes)\n- RDMA/srpt: Make slab cache names unique (git-fixes)\n- SUNRPC: Fix integer overflow in decode_rc_list() (git-fixes).\n- SUNRPC: Fixup gss_status tracepoint error output (git-fixes).\n- SUNRPC: clnt.c: Remove misleading comment (git-fixes).\n- USB: appledisplay: close race between probe and completion handler (stable-fixes).\n- USB: misc: cypress_cy7c63: check for short transfer (stable-fixes).\n- USB: misc: yurex: fix race between read and write (stable-fixes).\n- USB: serial: option: add Telit FN920C04 MBIM compositions (stable-fixes).\n- USB: serial: option: add support for Quectel EG916Q-GL (stable-fixes).\n- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).\n- Use pahole -j1 option for reproducible builds (bsc#1230414 bsc#1229450).\n- add bug reference for a mana change (bsc#1229769).\n- add bug references to existing mana changes (bsc#1232033, bsc#1232034, bsc#1232036).\n- afs: Revert \u0027afs: Hide silly-rename files from userspace\u0027 (git-fixes).\n- arm64: cputype: Add Neoverse-N3 definitions (git-fixes)\n- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).\n- arm64: errata: Expand speculative SSBS workaround once more (git-fixes)\n- arm64: esr: Define ESR_ELx_EC_* constants as UL (git-fixes)\n- arm64: probes: Fix simulate_ldr*_literal() (git-fixes)\n- arm64: probes: Fix uprobes for big-endian kernels (git-fixes)\n- arm64: probes: Remove broken LDR (literal) uprobe support (git-fixes)\n- block: print symbolic error name instead of error code (bsc#1231872).\n- bpf, lsm: Add disabled BPF LSM hook list (git-fixes).\n- bpf, net: Fix a potential race in do_sock_getsockopt() (git-fixes).\n- bpf, verifier: Correct tail_call_reachable for bpf prog (git-fixes).\n- bpf, x64: Remove tail call detection (git-fixes).\n- bpf,perf: Fix perf_event_detach_bpf_prog error handling (git-fixes).\n- bpf: Add --skip_encoding_btf_inconsistent_proto, --btf_gen_optimized to pahole flags for v1.25 (bsc#1230414 bsc#1229450).\n- bpf: Allow helpers to accept pointers with a fixed size (git-fixes).\n- bpf: Check for helper calls in check_subprogs() (git-fixes).\n- bpf: Fix bpf_strtol and bpf_strtoul helpers for 32bit (git-fixes).\n- bpf: Fix helper writes to read-only maps (git-fixes).\n- bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation (bsc#1231375).\n- bpf: Fix tailcall cases in test_bpf (git-fixes).\n- bpf: Improve check_raw_mode_ok test for MEM_UNINIT-tagged types (git-fixes).\n- bpf: Remove truncation test in bpf_strtol and bpf_strtoul helpers (git-fixes).\n- bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error (git-fixes).\n- bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos (git-fixes).\n- btf, scripts: Exclude Rust CUs with pahole (bsc#1230414 bsc#1229450).\n- bus: integrator-lm: fix OF node leak in probe() (git-fixes).\n- ceph: fix cap ref leak via netfs init_request (bsc#1231383).\n- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).\n- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).\n- comedi: ni_routing: tools: Check when the file could not be opened (stable-fixes).\n- cpufreq/amd-pstate: Fix amd_pstate mode switch on shared memory systems (git-fixes).\n- crypto: hisilicon - Remove pci_aer_clear_nonfatal_status() call (bsc#1232075)\n- crypto: hisilicon/qm - re-enable communicate interrupt before notifying PF (bsc#1232075)\n- debugfs: fix automount d_fsdata usage (git-fixes).\n- dn_route: set rt neigh to blackhole_netdev instead of loopback_dev in ifdown (bsc#1216813).\n- drbd: Add NULL check for net_conf to prevent dereference in state validation (git-fixes).\n- drbd: Fix atomicity violation in drbd_uuid_set_bm() (git-fixes).\n- driver core: bus: Return -EIO instead of 0 when show/store invalid bus attribute (stable-fixes).\n- drm/amd/amdgpu: Fix double unlock in amdgpu_mes_add_ring (git-fixes).\n- drm/amd/display: Add null check for \u0027afb\u0027 in amdgpu_dm_plane_handle_cursor_update (v2) (stable-fixes).\n- drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (stable-fixes).\n- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).\n- drm/amd/display: Check link_res-\u003ehpo_dp_link_enc before using it (bsc#1231944)\n- drm/amd/display: Check null pointer before dereferencing se (stable-fixes).\n- drm/amd/display: Check null pointers before using dc-\u003eclk_mgr (stable-fixes).\n- drm/amd/display: Check stream before comparing them (stable-fixes).\n- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).\n- drm/amd/display: Fix index out of bounds in DCN30 color transformation (stable-fixes).\n- drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation (stable-fixes).\n- drm/amd/display: Fix index out of bounds in degamma hardware format translation (stable-fixes).\n- drm/amd/display: Fix system hang while resume with TBT monitor (stable-fixes).\n- drm/amd/display: Handle null \u0027stream_status\u0027 in \u0027planes_changed_for_existing_stream\u0027 (stable-fixes).\n- drm/amd/display: Initialize get_bytes_per_element\u0027s default to 1 (stable-fixes).\n- drm/amd/display: Round calculated vtotal (stable-fixes).\n- drm/amd/display: Validate backlight caps are sane (stable-fixes).\n- drm/amd/pm: ensure the fw_info is not null before using it (stable-fixes).\n- drm/amd: Guard against bad data for ATIF ACPI method (git-fixes).\n- drm/amdgpu: Replace one-element array with flexible-array member (stable-fixes).\n- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).\n- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).\n- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).\n- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).\n- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).\n- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).\n- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).\n- drm/msm/dpu: do not always program merge_3d block (git-fixes).\n- drm/msm/dpu: make sure phys resources are properly initialized (git-fixes).\n- drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate calculation (git-fixes).\n- drm/msm: Allocate memory for disp snapshot with kvzalloc() (git-fixes).\n- drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() (git-fixes).\n- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).\n- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).\n- drm/radeon: Fix encoder-\u003epossible_clones (git-fixes).\n- drm/radeon: Replace one-element array with flexible-array member (stable-fixes).\n- drm/radeon: properly handle vbios fake edid sizing (git-fixes).\n- drm/rockchip: define gamma registers for RK3399 (stable-fixes).\n- drm/rockchip: support gamma control on RK3399 (stable-fixes).\n- drm/sched: Add locking to drm_sched_entity_modify_sched (git-fixes).\n- drm/v3d: Stop the active perfmon before being destroyed (git-fixes).\n- drm/vc4: Stop the active perfmon before being destroyed (git-fixes).\n- drm/vmwgfx: Handle surface check failure correctly (git-fixes).\n- drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS (git-fixes).\n- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).\n- efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption (stable-fixes).\n- erofs: avoid consecutive detection for Highmem memory (git-fixes).\n- erofs: avoid infinite loop in z_erofs_do_read_page() when reading beyond EOF (git-fixes).\n- erofs: fix pcluster use-after-free on UP platforms (git-fixes).\n- erofs: fix potential overflow calculating xattr_isize (git-fixes).\n- erofs: stop parsing non-compact HEAD index if clusterofs is invalid (git-fixes).\n- exportfs: use pr_debug for unreachable debug statements (git-fixes).\n- ext4: fix slab-use-after-free in ext4_split_extent_at() (bsc#1232201)\n- fat: fix uninitialized variable (git-fixes).\n- fbdev: pxafb: Fix possible use after free in pxafb_task() (stable-fixes).\n- fbdev: sisfb: Fix strbuf array overflow (stable-fixes).\n- fgraph: Change the name of cpuhp state to \u0027fgraph:online\u0027 (git-fixes).\n- fgraph: Fix missing unlock in register_ftrace_graph() (git-fixes).\n- fgraph: Use CPU hotplug mechanism to initialize idle shadow stacks (git-fixes).\n- filelock: fix potential use-after-free in posix_lock_inode (git-fixes).\n- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).\n- fs/namespace: fnic: Switch to use %ptTd (git-fixes).\n- fs/pipe: Fix lockdep false-positive in watchqueue pipe_write() (git-fixes).\n- fs: Fix file_set_fowner LSM hook inconsistencies (git-fixes).\n- gpio: aspeed: Add the flush write to ensure the write complete (git-fixes).\n- gpio: aspeed: Use devm_clk api to manage clock source (git-fixes).\n- gpio: davinci: fix lazy disable (git-fixes).\n- hid: intel-ish-hid: Fix uninitialized variable \u0027rv\u0027 in ish_fw_xfer_direct_dma (git-fixes).\n- hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event (git-fixes).\n- hwmon: (adm9240) Add missing dependency on REGMAP_I2C (git-fixes).\n- hwmon: (tmp513) Add missing dependency on REGMAP_I2C (git-fixes).\n- i2c: i801: Use a different adapter-name for IDF adapters (stable-fixes).\n- i2c: imx-lpi2c: return -EINVAL when i2c peripheral clk does not work (bsc#1227885).\n- i2c: imx-lpi2c: use bulk clk API (bsc#1227885).\n- i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume (git-fixes).\n- i2c: xiic: Fix RX IRQ busy check (stable-fixes).\n- i2c: xiic: Fix broken locking on tx_msg (stable-fixes).\n- i2c: xiic: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes).\n- i2c: xiic: Switch from waitqueue to completion (stable-fixes).\n- i2c: xiic: Try re-initialization on bus busy timeout (git-fixes).\n- i2c: xiic: Use devm_clk_get_enabled() (stable-fixes).\n- i2c: xiic: improve error message when transfer fails to start (stable-fixes).\n- i2c: xiic: xiic_xfer(): Fix runtime PM leak on error path (git-fixes).\n- ice: Unbind the workqueue (bsc#1231344).\n- iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig (git-fixes).\n- iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig (git-fixes).\n- iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig (git-fixes).\n- iio: hid-sensors: Fix an error handling path in _hid_sensor_set_report_latency() (git-fixes).\n- iio: light: opt3001: add missing full-scale range value (git-fixes).\n- iio: light: veml6030: fix ALS sensor resolution (git-fixes).\n- iio: light: veml6030: fix IIO device retrieval from embedded device (git-fixes).\n- iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes).\n- iommu/vt-d: Always reserve a domain ID for identity setup (git-fixes).\n- ipv6: blackhole_netdev needs snmp6 counters (bsc#1216813).\n- ipv6: give an IPv6 dev to blackhole_netdev (bsc#1216813).\n- jfs: Fix sanity check in dbMount (git-fixes).\n- jfs: Fix uaf in dbFreeBits (git-fixes).\n- jfs: Fix uninit-value access of new_ea in ea_buffer (git-fixes).\n- jfs: UBSAN: shift-out-of-bounds in dbFindBits (git-fixes).\n- jfs: check if leafidx greater than num leaves per dmap tree (git-fixes).\n- kABI: bpf: enum bpf_{type_flag,arg_type} kABI workaround (git-fixes).\n- kABI: bpf: struct bpf_func_proto kABI workaround (git-fixes).\n- kab: fix after net: add more sanity check in virtio_net_hdr_to_skb() (git-fixes).\n- kabi fix of KVM: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes).\n- kabi: fix after KVM: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes).\n- kabi: fix after kvm: add guest_state_{enter,exit}_irqoff() (git-fixes).\n- kbuild, bpf: Use test-ge check for v1.25-only pahole (bsc#1230414 bsc#1229450).\n- kbuild,bpf: Add module-specific pahole flags for distilled base BTF (bsc#1230414 bsc#1229450).\n- kbuild,bpf: Switch to using --btf_features for pahole v1.26 and later (bsc#1230414 bsc#1229450).\n- kbuild: add test-{ge,gt,le,lt} macros (bsc#1230414 bsc#1229450).\n- kbuild: avoid too many execution of scripts/pahole-flags.sh (bsc#1230414 bsc#1229450).\n- kbuild: bpf: Tell pahole to DECL_TAG kfuncs (bsc#1230414 bsc#1229450).\n- kvm/arm64: rework guest entry logic (git-fixes).\n- kvm: Add support for arch compat vm ioctls (git-fixes).\n- kvm: add guest_state_{enter,exit}_irqoff() (git-fixes).\n- media: videobuf2-core: clear memory related fields in __vb2_plane_dmabuf_put() (stable-fixes).\n- module: abort module loading when sysfs setup suffer errors (git-fixes).\n- nbd: fix race between timeout and normal completion (bsc#1230918).\n- net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX (bsc#1226797)\n- net: add more sanity check in virtio_net_hdr_to_skb() (git-fixes).\n- net: socket: suppress unused warning (git-fixes).\n- net: test for not too small csum_start in virtio_net_hdr_to_skb() (git-fixes).\n- net: usb: usbnet: fix name regression (git-fixes).\n- netdevsim: use cond_resched() in nsim_dev_trap_report_work() (git-fixes).\n- nfs: fix memory leak in error path of nfs4_do_reclaim (git-fixes).\n- nfsd: call cache_put if xdr_reserve_space returns NULL (git-fixes).\n- nfsd: fix delegation_blocked() to block correctly for at least 30 seconds (git-fixes).\n- nfsd: fix refcount leak when file is unhashed after being found (git-fixes).\n- nfsd: map the EBADMSG to nfserr_io to avoid warning (git-fixes).\n- nfsd: remove unneeded EEXIST error check in nfsd_do_file_acquire (git-fixes).\n- nfsd: return -EINVAL when namelen is 0 (git-fixes).\n- nilfs2: fix kernel bug due to missing clearing of buffer delay flag (git-fixes).\n- nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error (git-fixes).\n- ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir() (git-fixes).\n- ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (stable-fixes).\n- nvme-multipath: system fails to create generic nvme device (git-fixes).\n- nvme-pci: qdepth 1 quirk (git-fixes).\n- nvmet-auth: assign dh_key to NULL after kfree_sensitive (git-fixes).\n- ocfs2: fix the la space leak when unmounting an ocfs2 volume (git-fixes).\n- ocfs2: fix uninit-value in ocfs2_get_block() (git-fixes).\n- ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (git-fixes).\n- parport: Proper fix for array out-of-bounds access (git-fixes).\n- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).\n- platform/x86: touchscreen_dmi: add nanote-next quirk (stable-fixes).\n- power: reset: brcmstb: Do not go into infinite loop if reset fails (stable-fixes).\n- s390/sclp_vt220: Convert newlines to CRLF instead of LFCR (git-fixes bsc#1232632).\n- scsi: NCR5380: Check for phase match during PDMA fixup (git-fixes).\n- scsi: aacraid: Rearrange order of struct aac_srb_unit (git-fixes).\n- scsi: core: Fix the return value of scsi_logical_block_count() (git-fixes).\n- scsi: core: Handle devices which return an unusually large VPD page count (git-fixes).\n- scsi: core: alua: I/O errors for ALUA state transitions (git-fixes).\n- scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del() (git-fixes).\n- scsi: hpsa: Fix allocation size for Scsi_Host private data (git-fixes).\n- scsi: libsas: Fix exp-attached device scan after probe failure scanned in again after probe failed (git-fixes).\n- scsi: libsas: Fix the failure of adding phy with zero-address to port (git-fixes).\n- scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in lpfc_els_flush_cmd() (bsc#1232757).\n- scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance (bsc#1232757).\n- scsi: lpfc: Fix kref imbalance on fabric ndlps from dev_loss_tmo handler (bsc#1232757).\n- scsi: lpfc: Remove trailing space after \\n newline (bsc#1232757).\n- scsi: lpfc: Restrict support for 32 byte CDBs to specific HBAs (git-fixes).\n- scsi: lpfc: Revise TRACE_EVENT log flag severities from KERN_ERR to KERN_WARNING (bsc#1232757).\n- scsi: lpfc: Support loopback tests with VMID enabled (bsc#1232757).\n- scsi: lpfc: Update lpfc version to 14.4.0.5 (bsc#1232757).\n- scsi: lpfc: Update phba link state conditional before sending CMF_SYNC_WQE (bsc#1232757).\n- scsi: mac_scsi: Disallow bus errors during PDMA send (git-fixes).\n- scsi: mac_scsi: Refactor polling loop (git-fixes).\n- scsi: mac_scsi: Revise printk(KERN_DEBUG ...) messages (git-fixes).\n- scsi: mpi3mr: Avoid IOMMU page faults on REPORT ZONES (git-fixes).\n- scsi: mpi3mr: Fix ATA NCQ priority support (git-fixes).\n- scsi: mpt3sas: Avoid IOMMU page faults on REPORT ZONES (git-fixes).\n- scsi: qedf: Set qed_slowpath_params to zero before use (git-fixes).\n- scsi: smartpqi: correct stream detection (git-fixes).\n- scsi: smartpqi: revert propagate-the-multipath-failure-to-SML-quickly (git-fixes).\n- scsi: spi: Fix sshdr use (git-fixes).\n- scsi: wd33c93: Do not use stale scsi_pointer value (git-fixes).\n- selftests/bpf: Add a test case to write mtu result into .rodata (git-fixes).\n- selftests/bpf: Add a test case to write strtol result into .rodata (git-fixes).\n- selftests/bpf: Fix ARG_PTR_TO_LONG {half-,}uninitialized test (git-fixes).\n- selftests/bpf: Rename ARG_PTR_TO_LONG test description (git-fixes).\n- selftests/bpf: test for malformed BPF_CORE_TYPE_ID_LOCAL relocation (git-fixes).\n- spi: bcm63xx: Enable module autoloading (stable-fixes).\n- spi: bcm63xx: Fix module autoloading (git-fixes).\n- spi: lpspi: Silence error message upon deferred probe (stable-fixes).\n- spi: lpspi: Simplify some error message (git-fixes).\n- spi: lpspi: release requested DMA channels (stable-fixes).\n- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).\n- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).\n- spi: s3c64xx: fix timeout counters in flush_fifo (git-fixes).\n- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).\n- spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes).\n- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).\n- static_call: Do not make __static_call_return0 static (git-fixes).\n- tracing/hwlat: Fix a race during cpuhp processing (git-fixes).\n- tracing/uprobes: Use trace_event_buffer_reserve() helper (git-fixes).\n- tracing: Consider the NULL character when validating the event length (git-fixes).\n- uprobe: avoid out-of-bounds memory access of fetching args (git-fixes).\n- uprobes: encapsulate preparation of uprobe args buffer (git-fixes).\n- usb: chipidea: udc: enable suspend interrupt after usb reset (stable-fixes).\n- usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the Crashkernel Scenario (stable-fixes).\n- usb: dwc3: core: Stop processing of pending events if controller is halted (git-fixes).\n- usb: gadget: core: force synchronous registration (git-fixes).\n- usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip (stable-fixes).\n- usb: typec: altmode should keep reference to parent (git-fixes).\n- usb: xhci: Fix problem with xhci resume from suspend (stable-fixes).\n- usb: yurex: Fix inconsistent locking bug in yurex_read() (git-fixes).\n- usb: yurex: Replace snprintf() with the safer scnprintf() variant (stable-fixes).\n- usbnet: ipheth: fix carrier detection in modes 1 and 4 (stable-fixes).\n- vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (git-fixes).\n- vhost_vdpa: assign irq bypass producer token correctly (git-fixes).\n- virtio-net: synchronize probe with ndo_set_features (git-fixes).\n- virtio_console: fix misc probe bugs (git-fixes).\n- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).\n- vmxnet3: add command to allow disabling of offloads (bsc#1226498).\n- vmxnet3: add latency measurement support in vmxnet3 (bsc#1226498).\n- vmxnet3: prepare for version 9 changes (bsc#1226498).\n- vmxnet3: update to version 9 (bsc#1226498).\n- vsock/virtio: fix packet delivery to tap device (git-fixes).\n- wifi: ath11k: fix array out-of-bound access in SoC stats (stable-fixes).\n- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).\n- wifi: ath9k: fix parameter check in ath9k_init_debug() (stable-fixes).\n- wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats() (stable-fixes).\n- wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit (stable-fixes).\n- wifi: iwlwifi: clear trans-\u003estate earlier upon error (stable-fixes).\n- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).\n- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext() (stable-fixes).\n- wifi: rtw88: select WANT_DEV_COREDUMP (stable-fixes).\n- x86/bugs: Do not use UNTRAIN_RET with IBPB on entry (git-fixes).\n- x86/bugs: Skip RSB fill at VMEXIT (git-fixes).\n- x86/cpufeatures: Add a IBPB_NO_RET BUG flag (git-fixes).\n- x86/cpufeatures: Define X86_FEATURE_AMD_IBPB_RET (git-fixes).\n- x86/entry: Have entry_ibpb() invalidate return predictions (git-fixes).\n- x86/hyperv: Set X86_FEATURE_TSC_KNOWN_FREQ when Hyper-V provides frequency (git-fixes).\n- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1230405).\n- xfrm: set dst dev to blackhole_netdev instead of loopback_dev in ifdown (bsc#1216813).\n- xhci: Fix incorrect stream context type macro (git-fixes).\n- xhci: Mitigate failed set dequeue pointer commands (git-fixes).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2024-3983,SUSE-SLE-Module-Public-Cloud-15-SP5-2024-3983,openSUSE-SLE-15.5-2024-3983",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_3983-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2024:3983-1",
        "url": "https://www.suse.com/support/update/announcement/2024/suse-su-20243983-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2024:3983-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-November/019816.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1204171",
        "url": "https://bugzilla.suse.com/1204171"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1205796",
        "url": "https://bugzilla.suse.com/1205796"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1206188",
        "url": "https://bugzilla.suse.com/1206188"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1206344",
        "url": "https://bugzilla.suse.com/1206344"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1209290",
        "url": "https://bugzilla.suse.com/1209290"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1210449",
        "url": "https://bugzilla.suse.com/1210449"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1210627",
        "url": "https://bugzilla.suse.com/1210627"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1213034",
        "url": "https://bugzilla.suse.com/1213034"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1216813",
        "url": "https://bugzilla.suse.com/1216813"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1218562",
        "url": "https://bugzilla.suse.com/1218562"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223384",
        "url": "https://bugzilla.suse.com/1223384"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223524",
        "url": "https://bugzilla.suse.com/1223524"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223824",
        "url": "https://bugzilla.suse.com/1223824"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1225189",
        "url": "https://bugzilla.suse.com/1225189"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1225336",
        "url": "https://bugzilla.suse.com/1225336"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1225611",
        "url": "https://bugzilla.suse.com/1225611"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1225762",
        "url": "https://bugzilla.suse.com/1225762"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1226498",
        "url": "https://bugzilla.suse.com/1226498"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1226797",
        "url": "https://bugzilla.suse.com/1226797"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1227437",
        "url": "https://bugzilla.suse.com/1227437"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1227885",
        "url": "https://bugzilla.suse.com/1227885"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1228119",
        "url": "https://bugzilla.suse.com/1228119"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1228269",
        "url": "https://bugzilla.suse.com/1228269"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1228709",
        "url": "https://bugzilla.suse.com/1228709"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1228743",
        "url": "https://bugzilla.suse.com/1228743"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229005",
        "url": "https://bugzilla.suse.com/1229005"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229019",
        "url": "https://bugzilla.suse.com/1229019"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229450",
        "url": "https://bugzilla.suse.com/1229450"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229454",
        "url": "https://bugzilla.suse.com/1229454"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229456",
        "url": "https://bugzilla.suse.com/1229456"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229556",
        "url": "https://bugzilla.suse.com/1229556"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229769",
        "url": "https://bugzilla.suse.com/1229769"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229837",
        "url": "https://bugzilla.suse.com/1229837"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230179",
        "url": "https://bugzilla.suse.com/1230179"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230405",
        "url": "https://bugzilla.suse.com/1230405"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230414",
        "url": "https://bugzilla.suse.com/1230414"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230429",
        "url": "https://bugzilla.suse.com/1230429"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230456",
        "url": "https://bugzilla.suse.com/1230456"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230600",
        "url": "https://bugzilla.suse.com/1230600"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230620",
        "url": "https://bugzilla.suse.com/1230620"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230715",
        "url": "https://bugzilla.suse.com/1230715"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230722",
        "url": "https://bugzilla.suse.com/1230722"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230773",
        "url": "https://bugzilla.suse.com/1230773"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230801",
        "url": "https://bugzilla.suse.com/1230801"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230903",
        "url": "https://bugzilla.suse.com/1230903"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230918",
        "url": "https://bugzilla.suse.com/1230918"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231016",
        "url": "https://bugzilla.suse.com/1231016"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231072",
        "url": "https://bugzilla.suse.com/1231072"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231073",
        "url": "https://bugzilla.suse.com/1231073"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231094",
        "url": "https://bugzilla.suse.com/1231094"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231096",
        "url": "https://bugzilla.suse.com/1231096"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231105",
        "url": "https://bugzilla.suse.com/1231105"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231114",
        "url": "https://bugzilla.suse.com/1231114"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231148",
        "url": "https://bugzilla.suse.com/1231148"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231179",
        "url": "https://bugzilla.suse.com/1231179"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231191",
        "url": "https://bugzilla.suse.com/1231191"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231193",
        "url": "https://bugzilla.suse.com/1231193"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231195",
        "url": "https://bugzilla.suse.com/1231195"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231197",
        "url": "https://bugzilla.suse.com/1231197"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231200",
        "url": "https://bugzilla.suse.com/1231200"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231203",
        "url": "https://bugzilla.suse.com/1231203"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231293",
        "url": "https://bugzilla.suse.com/1231293"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231344",
        "url": "https://bugzilla.suse.com/1231344"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231375",
        "url": "https://bugzilla.suse.com/1231375"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231383",
        "url": "https://bugzilla.suse.com/1231383"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231439",
        "url": "https://bugzilla.suse.com/1231439"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231442",
        "url": "https://bugzilla.suse.com/1231442"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231496",
        "url": "https://bugzilla.suse.com/1231496"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231502",
        "url": "https://bugzilla.suse.com/1231502"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231539",
        "url": "https://bugzilla.suse.com/1231539"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231540",
        "url": "https://bugzilla.suse.com/1231540"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231578",
        "url": "https://bugzilla.suse.com/1231578"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231673",
        "url": "https://bugzilla.suse.com/1231673"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231857",
        "url": "https://bugzilla.suse.com/1231857"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231861",
        "url": "https://bugzilla.suse.com/1231861"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231872",
        "url": "https://bugzilla.suse.com/1231872"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231883",
        "url": "https://bugzilla.suse.com/1231883"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231885",
        "url": "https://bugzilla.suse.com/1231885"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231887",
        "url": "https://bugzilla.suse.com/1231887"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231888",
        "url": "https://bugzilla.suse.com/1231888"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231889",
        "url": "https://bugzilla.suse.com/1231889"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231890",
        "url": "https://bugzilla.suse.com/1231890"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231892",
        "url": "https://bugzilla.suse.com/1231892"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231893",
        "url": "https://bugzilla.suse.com/1231893"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231895",
        "url": "https://bugzilla.suse.com/1231895"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231896",
        "url": "https://bugzilla.suse.com/1231896"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231897",
        "url": "https://bugzilla.suse.com/1231897"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231902",
        "url": "https://bugzilla.suse.com/1231902"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231903",
        "url": "https://bugzilla.suse.com/1231903"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231907",
        "url": "https://bugzilla.suse.com/1231907"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231914",
        "url": "https://bugzilla.suse.com/1231914"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231929",
        "url": "https://bugzilla.suse.com/1231929"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231935",
        "url": "https://bugzilla.suse.com/1231935"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231936",
        "url": "https://bugzilla.suse.com/1231936"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231937",
        "url": "https://bugzilla.suse.com/1231937"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231938",
        "url": "https://bugzilla.suse.com/1231938"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231939",
        "url": "https://bugzilla.suse.com/1231939"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231940",
        "url": "https://bugzilla.suse.com/1231940"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231941",
        "url": "https://bugzilla.suse.com/1231941"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231942",
        "url": "https://bugzilla.suse.com/1231942"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231944",
        "url": "https://bugzilla.suse.com/1231944"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231950",
        "url": "https://bugzilla.suse.com/1231950"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231954",
        "url": "https://bugzilla.suse.com/1231954"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231958",
        "url": "https://bugzilla.suse.com/1231958"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231960",
        "url": "https://bugzilla.suse.com/1231960"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231961",
        "url": "https://bugzilla.suse.com/1231961"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231962",
        "url": "https://bugzilla.suse.com/1231962"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231965",
        "url": "https://bugzilla.suse.com/1231965"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231967",
        "url": "https://bugzilla.suse.com/1231967"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231968",
        "url": "https://bugzilla.suse.com/1231968"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231972",
        "url": "https://bugzilla.suse.com/1231972"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231973",
        "url": "https://bugzilla.suse.com/1231973"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231976",
        "url": "https://bugzilla.suse.com/1231976"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231979",
        "url": "https://bugzilla.suse.com/1231979"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231987",
        "url": "https://bugzilla.suse.com/1231987"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231988",
        "url": "https://bugzilla.suse.com/1231988"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231990",
        "url": "https://bugzilla.suse.com/1231990"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231992",
        "url": "https://bugzilla.suse.com/1231992"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231995",
        "url": "https://bugzilla.suse.com/1231995"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231996",
        "url": "https://bugzilla.suse.com/1231996"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231997",
        "url": "https://bugzilla.suse.com/1231997"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231998",
        "url": "https://bugzilla.suse.com/1231998"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232001",
        "url": "https://bugzilla.suse.com/1232001"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232004",
        "url": "https://bugzilla.suse.com/1232004"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232005",
        "url": "https://bugzilla.suse.com/1232005"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232006",
        "url": "https://bugzilla.suse.com/1232006"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232007",
        "url": "https://bugzilla.suse.com/1232007"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232025",
        "url": "https://bugzilla.suse.com/1232025"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232026",
        "url": "https://bugzilla.suse.com/1232026"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232033",
        "url": "https://bugzilla.suse.com/1232033"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232034",
        "url": "https://bugzilla.suse.com/1232034"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232035",
        "url": "https://bugzilla.suse.com/1232035"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232036",
        "url": "https://bugzilla.suse.com/1232036"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232037",
        "url": "https://bugzilla.suse.com/1232037"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232038",
        "url": "https://bugzilla.suse.com/1232038"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232039",
        "url": "https://bugzilla.suse.com/1232039"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232043",
        "url": "https://bugzilla.suse.com/1232043"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232049",
        "url": "https://bugzilla.suse.com/1232049"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232067",
        "url": "https://bugzilla.suse.com/1232067"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232069",
        "url": "https://bugzilla.suse.com/1232069"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232070",
        "url": "https://bugzilla.suse.com/1232070"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232071",
        "url": "https://bugzilla.suse.com/1232071"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232075",
        "url": "https://bugzilla.suse.com/1232075"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232083",
        "url": "https://bugzilla.suse.com/1232083"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232084",
        "url": "https://bugzilla.suse.com/1232084"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232085",
        "url": "https://bugzilla.suse.com/1232085"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232089",
        "url": "https://bugzilla.suse.com/1232089"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232097",
        "url": "https://bugzilla.suse.com/1232097"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232104",
        "url": "https://bugzilla.suse.com/1232104"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232105",
        "url": "https://bugzilla.suse.com/1232105"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232108",
        "url": "https://bugzilla.suse.com/1232108"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232114",
        "url": "https://bugzilla.suse.com/1232114"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232116",
        "url": "https://bugzilla.suse.com/1232116"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232119",
        "url": "https://bugzilla.suse.com/1232119"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232120",
        "url": "https://bugzilla.suse.com/1232120"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232123",
        "url": "https://bugzilla.suse.com/1232123"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232124",
        "url": "https://bugzilla.suse.com/1232124"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232133",
        "url": "https://bugzilla.suse.com/1232133"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232135",
        "url": "https://bugzilla.suse.com/1232135"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232136",
        "url": "https://bugzilla.suse.com/1232136"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232140",
        "url": "https://bugzilla.suse.com/1232140"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232145",
        "url": "https://bugzilla.suse.com/1232145"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232149",
        "url": "https://bugzilla.suse.com/1232149"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232150",
        "url": "https://bugzilla.suse.com/1232150"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232151",
        "url": "https://bugzilla.suse.com/1232151"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232154",
        "url": "https://bugzilla.suse.com/1232154"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232155",
        "url": "https://bugzilla.suse.com/1232155"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232160",
        "url": "https://bugzilla.suse.com/1232160"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232163",
        "url": "https://bugzilla.suse.com/1232163"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232164",
        "url": "https://bugzilla.suse.com/1232164"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232170",
        "url": "https://bugzilla.suse.com/1232170"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232172",
        "url": "https://bugzilla.suse.com/1232172"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232174",
        "url": "https://bugzilla.suse.com/1232174"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232175",
        "url": "https://bugzilla.suse.com/1232175"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232191",
        "url": "https://bugzilla.suse.com/1232191"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232196",
        "url": "https://bugzilla.suse.com/1232196"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232199",
        "url": "https://bugzilla.suse.com/1232199"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232200",
        "url": "https://bugzilla.suse.com/1232200"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232201",
        "url": "https://bugzilla.suse.com/1232201"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232217",
        "url": "https://bugzilla.suse.com/1232217"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232220",
        "url": "https://bugzilla.suse.com/1232220"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232221",
        "url": "https://bugzilla.suse.com/1232221"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232229",
        "url": "https://bugzilla.suse.com/1232229"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232233",
        "url": "https://bugzilla.suse.com/1232233"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232237",
        "url": "https://bugzilla.suse.com/1232237"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232251",
        "url": "https://bugzilla.suse.com/1232251"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232253",
        "url": "https://bugzilla.suse.com/1232253"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232259",
        "url": "https://bugzilla.suse.com/1232259"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232260",
        "url": "https://bugzilla.suse.com/1232260"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232262",
        "url": "https://bugzilla.suse.com/1232262"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232263",
        "url": "https://bugzilla.suse.com/1232263"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232282",
        "url": "https://bugzilla.suse.com/1232282"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232285",
        "url": "https://bugzilla.suse.com/1232285"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232286",
        "url": "https://bugzilla.suse.com/1232286"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232304",
        "url": "https://bugzilla.suse.com/1232304"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232305",
        "url": "https://bugzilla.suse.com/1232305"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232307",
        "url": "https://bugzilla.suse.com/1232307"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232309",
        "url": "https://bugzilla.suse.com/1232309"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232310",
        "url": "https://bugzilla.suse.com/1232310"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232313",
        "url": "https://bugzilla.suse.com/1232313"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232314",
        "url": "https://bugzilla.suse.com/1232314"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232316",
        "url": "https://bugzilla.suse.com/1232316"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232329",
        "url": "https://bugzilla.suse.com/1232329"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232332",
        "url": "https://bugzilla.suse.com/1232332"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232335",
        "url": "https://bugzilla.suse.com/1232335"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232337",
        "url": "https://bugzilla.suse.com/1232337"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232342",
        "url": "https://bugzilla.suse.com/1232342"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232345",
        "url": "https://bugzilla.suse.com/1232345"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232352",
        "url": "https://bugzilla.suse.com/1232352"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232354",
        "url": "https://bugzilla.suse.com/1232354"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232355",
        "url": "https://bugzilla.suse.com/1232355"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232358",
        "url": "https://bugzilla.suse.com/1232358"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232361",
        "url": "https://bugzilla.suse.com/1232361"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232366",
        "url": "https://bugzilla.suse.com/1232366"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232367",
        "url": "https://bugzilla.suse.com/1232367"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232368",
        "url": "https://bugzilla.suse.com/1232368"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232369",
        "url": "https://bugzilla.suse.com/1232369"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232374",
        "url": "https://bugzilla.suse.com/1232374"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232381",
        "url": "https://bugzilla.suse.com/1232381"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232383",
        "url": "https://bugzilla.suse.com/1232383"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232392",
        "url": "https://bugzilla.suse.com/1232392"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232395",
        "url": "https://bugzilla.suse.com/1232395"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232418",
        "url": "https://bugzilla.suse.com/1232418"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232424",
        "url": "https://bugzilla.suse.com/1232424"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232432",
        "url": "https://bugzilla.suse.com/1232432"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232435",
        "url": "https://bugzilla.suse.com/1232435"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232442",
        "url": "https://bugzilla.suse.com/1232442"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232446",
        "url": "https://bugzilla.suse.com/1232446"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232501",
        "url": "https://bugzilla.suse.com/1232501"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232519",
        "url": "https://bugzilla.suse.com/1232519"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232630",
        "url": "https://bugzilla.suse.com/1232630"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232631",
        "url": "https://bugzilla.suse.com/1232631"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232632",
        "url": "https://bugzilla.suse.com/1232632"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232757",
        "url": "https://bugzilla.suse.com/1232757"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47416 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47416/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47534 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47534/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-3435 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-3435/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45934 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45934/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48664 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48664/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48879 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48879/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48946 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48946/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48947 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48947/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48948 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48948/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48949 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48949/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48951 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48951/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48953 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48953/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48954 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48954/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48955 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48955/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48956 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48956/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48957 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48957/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48958 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48958/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48959 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48959/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48960 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48960/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48961 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48961/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48962 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48962/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48966 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48966/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48967 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48967/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48968 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48968/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48969 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48969/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48970 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48970/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48971 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48971/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48972 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48972/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48973 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48973/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48975 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48975/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48977 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48977/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48978 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48978/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48980 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48980/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48981 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48981/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48985 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48985/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48987 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48987/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48988 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48988/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48991 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48991/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48992 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48992/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48994 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48994/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48995 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48995/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48997 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48997/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48999 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48999/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49000 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49000/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49002 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49002/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49003 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49003/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49005 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49005/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49006 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49006/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49007 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49007/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49010 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49010/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49011 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49011/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49012 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49012/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49014 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49014/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49015 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49015/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49016 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49016/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49017 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49017/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49019 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49019/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49020 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49020/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49021 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49021/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49022 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49022/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49023 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49023/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49024 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49024/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49025 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49025/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49026 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49026/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49027 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49027/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49028 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49028/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49029 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49029/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49031 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49031/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49032 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49032/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-2166 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-2166/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-28327 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-28327/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52766 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52766/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52800 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52800/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52881 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52881/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52919 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52919/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-6270 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-6270/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27043 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27043/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-36244 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-36244/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-36957 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-36957/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-39476 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-39476/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-40965 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-40965/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-42145 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-42145/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-42226 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-42226/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-42253 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-42253/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-44931 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-44931/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-44947 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-44947/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-44958 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-44958/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-45016 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-45016/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-45025 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-45025/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46716 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46716/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46719 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46719/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46754 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46754/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46777 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46777/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46809 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46809/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46811 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46811/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46813 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46813/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46814 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46814/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46815 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46815/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46816 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46816/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46817 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46817/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46818 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46818/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46828 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46828/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46834 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46834/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46840 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46840/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46841 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46841/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46848 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46848/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46849 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46849/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47660 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47660/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47661 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47661/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47664 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47664/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47668 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47668/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47672 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47672/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47673 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47673/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47674 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47674/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47684 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47684/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47685 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47685/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47692 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47692/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47704 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47704/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47705 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47705/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47706 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47706/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47707 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47707/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47710 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47710/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47720 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47720/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47727 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47727/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47730 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47730/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47738 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47738/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47739 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47739/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47745 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47745/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47747 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47747/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47748 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47748/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49858 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49858/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49860 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49860/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49866 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49866/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49867 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49867/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49881 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49881/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49882 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49882/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49883 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49883/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49886 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49886/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49890 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49890/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49892 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49892/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49894 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49894/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49895 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49895/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49896 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49896/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49897 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49897/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49899 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49899/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49901 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49901/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49906 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49906/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49908 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49908/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49909 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49909/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49911 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49911/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49912 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49912/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49913 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49913/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49914 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49914/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49917 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49917/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49918 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49918/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49919 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49919/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49920 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49920/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49922 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49922/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49923 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49923/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49929 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49929/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49930 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49930/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49933 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49933/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49936 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49936/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49939 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49939/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49946 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49946/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49949 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49949/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49954 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49954/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49955 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49955/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49958 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49958/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49959 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49959/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49960 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49960/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49962 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49962/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49967 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49967/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49969 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49969/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49973 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49973/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49974 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49974/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49975 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49975/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49982 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49982/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49991 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49991/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49993 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49993/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49995 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49995/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49996 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49996/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50000 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50000/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50001 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50001/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50002 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50002/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50006 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50006/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50014 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50014/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50019 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50019/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50024 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50024/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50028 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50028/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50033 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50033/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50035 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50035/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50041 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50041/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50045 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50045/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50046 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50046/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50047 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50047/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50048 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50048/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50049 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50049/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50055 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50055/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50058 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50058/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50059 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50059/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50061 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50061/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50063 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50063/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50081 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50081/"
      }
    ],
    "title": "Security update for the Linux Kernel",
    "tracking": {
      "current_release_date": "2024-11-13T10:12:30Z",
      "generator": {
        "date": "2024-11-13T10:12:30Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2024:3983-1",
      "initial_release_date": "2024-11-13T10:12:30Z",
      "revision_history": [
        {
          "date": "2024-11-13T10:12:30Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
                "product": {
                  "name": "cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
                  "product_id": "cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
                "product": {
                  "name": "dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
                  "product_id": "dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
                "product": {
                  "name": "gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
                  "product_id": "gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-5.14.21-150500.33.72.1.aarch64",
                "product": {
                  "name": "kernel-azure-5.14.21-150500.33.72.1.aarch64",
                  "product_id": "kernel-azure-5.14.21-150500.33.72.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
                "product": {
                  "name": "kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
                  "product_id": "kernel-azure-devel-5.14.21-150500.33.72.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
                "product": {
                  "name": "kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
                  "product_id": "kernel-azure-extra-5.14.21-150500.33.72.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
                "product": {
                  "name": "kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
                  "product_id": "kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
                "product": {
                  "name": "kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
                  "product_id": "kernel-azure-optional-5.14.21-150500.33.72.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
                "product": {
                  "name": "kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
                  "product_id": "kernel-syms-azure-5.14.21-150500.33.72.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
                "product": {
                  "name": "kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
                  "product_id": "kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
                "product": {
                  "name": "ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
                  "product_id": "ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
                "product": {
                  "name": "reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
                  "product_id": "reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
                "product": {
                  "name": "kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
                  "product_id": "kernel-devel-azure-5.14.21-150500.33.72.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-azure-5.14.21-150500.33.72.1.noarch",
                "product": {
                  "name": "kernel-source-azure-5.14.21-150500.33.72.1.noarch",
                  "product_id": "kernel-source-azure-5.14.21-150500.33.72.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
                "product": {
                  "name": "cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
                  "product_id": "cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
                "product": {
                  "name": "dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
                  "product_id": "dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
                "product": {
                  "name": "gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
                  "product_id": "gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-5.14.21-150500.33.72.1.x86_64",
                "product": {
                  "name": "kernel-azure-5.14.21-150500.33.72.1.x86_64",
                  "product_id": "kernel-azure-5.14.21-150500.33.72.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
                "product": {
                  "name": "kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
                  "product_id": "kernel-azure-devel-5.14.21-150500.33.72.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
                "product": {
                  "name": "kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
                  "product_id": "kernel-azure-extra-5.14.21-150500.33.72.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
                "product": {
                  "name": "kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
                  "product_id": "kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
                "product": {
                  "name": "kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
                  "product_id": "kernel-azure-optional-5.14.21-150500.33.72.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
                "product": {
                  "name": "kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
                  "product_id": "kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
                "product": {
                  "name": "kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
                  "product_id": "kernel-syms-azure-5.14.21-150500.33.72.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
                "product": {
                  "name": "kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
                  "product_id": "kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
                "product": {
                  "name": "ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
                  "product_id": "ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64",
                "product": {
                  "name": "reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64",
                  "product_id": "reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
                  "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.5",
                "product": {
                  "name": "openSUSE Leap 15.5",
                  "product_id": "openSUSE Leap 15.5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.5"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-5.14.21-150500.33.72.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "kernel-azure-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-5.14.21-150500.33.72.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "kernel-azure-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-devel-5.14.21-150500.33.72.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-devel-5.14.21-150500.33.72.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-azure-5.14.21-150500.33.72.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch"
        },
        "product_reference": "kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-azure-5.14.21-150500.33.72.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch"
        },
        "product_reference": "kernel-source-azure-5.14.21-150500.33.72.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-azure-5.14.21-150500.33.72.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-azure-5.14.21-150500.33.72.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-5.14.21-150500.33.72.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "kernel-azure-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-5.14.21-150500.33.72.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "kernel-azure-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-devel-5.14.21-150500.33.72.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-devel-5.14.21-150500.33.72.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-extra-5.14.21-150500.33.72.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-extra-5.14.21-150500.33.72.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-optional-5.14.21-150500.33.72.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-optional-5.14.21-150500.33.72.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-azure-5.14.21-150500.33.72.1.noarch as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch"
        },
        "product_reference": "kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-azure-5.14.21-150500.33.72.1.noarch as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch"
        },
        "product_reference": "kernel-source-azure-5.14.21-150500.33.72.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-azure-5.14.21-150500.33.72.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-azure-5.14.21-150500.33.72.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64"
        },
        "product_reference": "reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        },
        "product_reference": "reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-47416",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47416"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: mdio: fix memory leak\n\nSyzbot reported memory leak in MDIO bus interface, the problem was in\nwrong state logic.\n\nMDIOBUS_ALLOCATED indicates 2 states:\n\t1. Bus is only allocated\n\t2. Bus allocated and __mdiobus_register() fails, but\n\t   device_register() was called\n\nIn case of device_register() has been called we should call put_device()\nto correctly free the memory allocated for this device, but mdiobus_free()\ncalls just kfree(dev) in case of MDIOBUS_ALLOCATED state\n\nTo avoid this behaviour we need to set bus-\u003estate to MDIOBUS_UNREGISTERED\n_before_ calling device_register(), because put_device() should be\ncalled even in case of device_register() failure.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47416",
          "url": "https://www.suse.com/security/cve/CVE-2021-47416"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225189 for CVE-2021-47416",
          "url": "https://bugzilla.suse.com/1225189"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225336 for CVE-2021-47416",
          "url": "https://bugzilla.suse.com/1225336"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2021-47416"
    },
    {
      "cve": "CVE-2021-47534",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47534"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: kms: Add missing drm_crtc_commit_put\n\nCommit 9ec03d7f1ed3 (\"drm/vc4: kms: Wait on previous FIFO users before a\ncommit\") introduced a global state for the HVS, with each FIFO storing\nthe current CRTC commit so that we can properly synchronize commits.\n\nHowever, the refcounting was off and we thus ended up leaking the\ndrm_crtc_commit structure every commit. Add a drm_crtc_commit_put to\nprevent the leakage.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47534",
          "url": "https://www.suse.com/security/cve/CVE-2021-47534"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230903 for CVE-2021-47534",
          "url": "https://bugzilla.suse.com/1230903"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47534"
    },
    {
      "cve": "CVE-2022-3435",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-3435"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A vulnerability classified as problematic has been found in Linux Kernel. This affects the function fib_nh_match of the file net/ipv4/fib_semantics.c of the component IPv4 Handler. The manipulation leads to out-of-bounds read. It is possible to initiate the attack remotely. It is recommended to apply a patch to fix this issue. The identifier VDB-210357 was assigned to this vulnerability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-3435",
          "url": "https://www.suse.com/security/cve/CVE-2022-3435"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204171 for CVE-2022-3435",
          "url": "https://bugzilla.suse.com/1204171"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-3435"
    },
    {
      "cve": "CVE-2022-45934",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45934"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45934",
          "url": "https://www.suse.com/security/cve/CVE-2022-45934"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205796 for CVE-2022-45934",
          "url": "https://bugzilla.suse.com/1205796"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212292 for CVE-2022-45934",
          "url": "https://bugzilla.suse.com/1212292"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-45934"
    },
    {
      "cve": "CVE-2022-48664",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48664"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix hang during unmount when stopping a space reclaim worker\n\nOften when running generic/562 from fstests we can hang during unmount,\nresulting in a trace like this:\n\n  Sep 07 11:52:00 debian9 unknown: run fstests generic/562 at 2022-09-07 11:52:00\n  Sep 07 11:55:32 debian9 kernel: INFO: task umount:49438 blocked for more than 120 seconds.\n  Sep 07 11:55:32 debian9 kernel:       Not tainted 6.0.0-rc2-btrfs-next-122 #1\n  Sep 07 11:55:32 debian9 kernel: \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n  Sep 07 11:55:32 debian9 kernel: task:umount          state:D stack:    0 pid:49438 ppid: 25683 flags:0x00004000\n  Sep 07 11:55:32 debian9 kernel: Call Trace:\n  Sep 07 11:55:32 debian9 kernel:  \u003cTASK\u003e\n  Sep 07 11:55:32 debian9 kernel:  __schedule+0x3c8/0xec0\n  Sep 07 11:55:32 debian9 kernel:  ? rcu_read_lock_sched_held+0x12/0x70\n  Sep 07 11:55:32 debian9 kernel:  schedule+0x5d/0xf0\n  Sep 07 11:55:32 debian9 kernel:  schedule_timeout+0xf1/0x130\n  Sep 07 11:55:32 debian9 kernel:  ? lock_release+0x224/0x4a0\n  Sep 07 11:55:32 debian9 kernel:  ? lock_acquired+0x1a0/0x420\n  Sep 07 11:55:32 debian9 kernel:  ? trace_hardirqs_on+0x2c/0xd0\n  Sep 07 11:55:32 debian9 kernel:  __wait_for_common+0xac/0x200\n  Sep 07 11:55:32 debian9 kernel:  ? usleep_range_state+0xb0/0xb0\n  Sep 07 11:55:32 debian9 kernel:  __flush_work+0x26d/0x530\n  Sep 07 11:55:32 debian9 kernel:  ? flush_workqueue_prep_pwqs+0x140/0x140\n  Sep 07 11:55:32 debian9 kernel:  ? trace_clock_local+0xc/0x30\n  Sep 07 11:55:32 debian9 kernel:  __cancel_work_timer+0x11f/0x1b0\n  Sep 07 11:55:32 debian9 kernel:  ? close_ctree+0x12b/0x5b3 [btrfs]\n  Sep 07 11:55:32 debian9 kernel:  ? __trace_bputs+0x10b/0x170\n  Sep 07 11:55:32 debian9 kernel:  close_ctree+0x152/0x5b3 [btrfs]\n  Sep 07 11:55:32 debian9 kernel:  ? evict_inodes+0x166/0x1c0\n  Sep 07 11:55:32 debian9 kernel:  generic_shutdown_super+0x71/0x120\n  Sep 07 11:55:32 debian9 kernel:  kill_anon_super+0x14/0x30\n  Sep 07 11:55:32 debian9 kernel:  btrfs_kill_super+0x12/0x20 [btrfs]\n  Sep 07 11:55:32 debian9 kernel:  deactivate_locked_super+0x2e/0xa0\n  Sep 07 11:55:32 debian9 kernel:  cleanup_mnt+0x100/0x160\n  Sep 07 11:55:32 debian9 kernel:  task_work_run+0x59/0xa0\n  Sep 07 11:55:32 debian9 kernel:  exit_to_user_mode_prepare+0x1a6/0x1b0\n  Sep 07 11:55:32 debian9 kernel:  syscall_exit_to_user_mode+0x16/0x40\n  Sep 07 11:55:32 debian9 kernel:  do_syscall_64+0x48/0x90\n  Sep 07 11:55:32 debian9 kernel:  entry_SYSCALL_64_after_hwframe+0x63/0xcd\n  Sep 07 11:55:32 debian9 kernel: RIP: 0033:0x7fcde59a57a7\n  Sep 07 11:55:32 debian9 kernel: RSP: 002b:00007ffe914217c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6\n  Sep 07 11:55:32 debian9 kernel: RAX: 0000000000000000 RBX: 00007fcde5ae8264 RCX: 00007fcde59a57a7\n  Sep 07 11:55:32 debian9 kernel: RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055b57556cdd0\n  Sep 07 11:55:32 debian9 kernel: RBP: 000055b57556cba0 R08: 0000000000000000 R09: 00007ffe91420570\n  Sep 07 11:55:32 debian9 kernel: R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\n  Sep 07 11:55:32 debian9 kernel: R13: 000055b57556cdd0 R14: 000055b57556ccb8 R15: 0000000000000000\n  Sep 07 11:55:32 debian9 kernel:  \u003c/TASK\u003e\n\nWhat happens is the following:\n\n1) The cleaner kthread tries to start a transaction to delete an unused\n   block group, but the metadata reservation can not be satisfied right\n   away, so a reservation ticket is created and it starts the async\n   metadata reclaim task (fs_info-\u003easync_reclaim_work);\n\n2) Writeback for all the filler inodes with an i_size of 2K starts\n   (generic/562 creates a lot of 2K files with the goal of filling\n   metadata space). We try to create an inline extent for them, but we\n   fail when trying to insert the inline extent with -ENOSPC (at\n   cow_file_range_inline()) - since this is not critical, we fallback\n   to non-inline mode (back to cow_file_range()), reserve extents\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48664",
          "url": "https://www.suse.com/security/cve/CVE-2022-48664"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223524 for CVE-2022-48664",
          "url": "https://bugzilla.suse.com/1223524"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48664"
    },
    {
      "cve": "CVE-2022-48879",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48879"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi: fix NULL-deref in init error path\n\nIn cases where runtime services are not supported or have been disabled,\nthe runtime services workqueue will never have been allocated.\n\nDo not try to destroy the workqueue unconditionally in the unlikely\nevent that EFI initialisation fails to avoid dereferencing a NULL\npointer.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48879",
          "url": "https://www.suse.com/security/cve/CVE-2022-48879"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1229556 for CVE-2022-48879",
          "url": "https://bugzilla.suse.com/1229556"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48879"
    },
    {
      "cve": "CVE-2022-48946",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48946"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Fix preallocation discarding at indirect extent boundary\n\nWhen preallocation extent is the first one in the extent block, the\ncode would corrupt extent tree header instead. Fix the problem and use\nudf_delete_aext() for deleting extent to avoid some code duplication.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48946",
          "url": "https://www.suse.com/security/cve/CVE-2022-48946"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231888 for CVE-2022-48946",
          "url": "https://bugzilla.suse.com/1231888"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48946"
    },
    {
      "cve": "CVE-2022-48947",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48947"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: Fix u8 overflow\n\nBy keep sending L2CAP_CONF_REQ packets, chan-\u003enum_conf_rsp increases\nmultiple times and eventually it will wrap around the maximum number\n(i.e., 255).\nThis patch prevents this by adding a boundary check with\nL2CAP_MAX_CONF_RSP\n\nBtmon log:\nBluetooth monitor ver 5.64\n= Note: Linux version 6.1.0-rc2 (x86_64)                               0.264594\n= Note: Bluetooth subsystem version 2.22                               0.264636\n@ MGMT Open: btmon (privileged) version 1.22                  {0x0001} 0.272191\n= New Index: 00:00:00:00:00:00 (Primary,Virtual,hci0)          [hci0] 13.877604\n@ RAW Open: 9496 (privileged) version 2.22                   {0x0002} 13.890741\n= Open Index: 00:00:00:00:00:00                                [hci0] 13.900426\n(...)\n\u003e ACL Data RX: Handle 200 flags 0x00 dlen 1033             #32 [hci0] 14.273106\n        invalid packet size (12 != 1033)\n        08 00 01 00 02 01 04 00 01 10 ff ff              ............\n\u003e ACL Data RX: Handle 200 flags 0x00 dlen 1547             #33 [hci0] 14.273561\n        invalid packet size (14 != 1547)\n        0a 00 01 00 04 01 06 00 40 00 00 00 00 00        ........@.....\n\u003e ACL Data RX: Handle 200 flags 0x00 dlen 2061             #34 [hci0] 14.274390\n        invalid packet size (16 != 2061)\n        0c 00 01 00 04 01 08 00 40 00 00 00 00 00 00 04  ........@.......\n\u003e ACL Data RX: Handle 200 flags 0x00 dlen 2061             #35 [hci0] 14.274932\n        invalid packet size (16 != 2061)\n        0c 00 01 00 04 01 08 00 40 00 00 00 07 00 03 00  ........@.......\n= bluetoothd: Bluetooth daemon 5.43                                   14.401828\n\u003e ACL Data RX: Handle 200 flags 0x00 dlen 1033             #36 [hci0] 14.275753\n        invalid packet size (12 != 1033)\n        08 00 01 00 04 01 04 00 40 00 00 00              ........@...",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48947",
          "url": "https://www.suse.com/security/cve/CVE-2022-48947"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231895 for CVE-2022-48947",
          "url": "https://bugzilla.suse.com/1231895"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48947"
    },
    {
      "cve": "CVE-2022-48948",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48948"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: uvc: Prevent buffer overflow in setup handler\n\nSetup function uvc_function_setup permits control transfer\nrequests with up to 64 bytes of payload (UVC_MAX_REQUEST_SIZE),\ndata stage handler for OUT transfer uses memcpy to copy req-\u003eactual\nbytes to uvc_event-\u003edata.data array of size 60. This may result\nin an overflow of 4 bytes.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48948",
          "url": "https://www.suse.com/security/cve/CVE-2022-48948"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231896 for CVE-2022-48948",
          "url": "https://bugzilla.suse.com/1231896"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48948"
    },
    {
      "cve": "CVE-2022-48949",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48949"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: Initialize mailbox message for VF reset\n\nWhen a MAC address is not assigned to the VF, that portion of the message\nsent to the VF is not set. The memory, however, is allocated from the\nstack meaning that information may be leaked to the VM. Initialize the\nmessage buffer to 0 so that no information is passed to the VM in this\ncase.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48949",
          "url": "https://www.suse.com/security/cve/CVE-2022-48949"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231897 for CVE-2022-48949",
          "url": "https://bugzilla.suse.com/1231897"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48949"
    },
    {
      "cve": "CVE-2022-48951",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48951"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: ops: Check bounds for second channel in snd_soc_put_volsw_sx()\n\nThe bounds checks in snd_soc_put_volsw_sx() are only being applied to the\nfirst channel, meaning it is possible to write out of bounds values to the\nsecond channel in stereo controls. Add appropriate checks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48951",
          "url": "https://www.suse.com/security/cve/CVE-2022-48951"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231929 for CVE-2022-48951",
          "url": "https://bugzilla.suse.com/1231929"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48951"
    },
    {
      "cve": "CVE-2022-48953",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48953"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtc: cmos: Fix event handler registration ordering issue\n\nBecause acpi_install_fixed_event_handler() enables the event\nautomatically on success, it is incorrect to call it before the\nhandler routine passed to it is ready to handle events.\n\nUnfortunately, the rtc-cmos driver does exactly the incorrect thing\nby calling cmos_wake_setup(), which passes rtc_handler() to\nacpi_install_fixed_event_handler(), before cmos_do_probe(), because\nrtc_handler() uses dev_get_drvdata() to get to the cmos object\npointer and the driver data pointer is only populated in\ncmos_do_probe().\n\nThis leads to a NULL pointer dereference in rtc_handler() on boot\nif the RTC fixed event happens to be active at the init time.\n\nTo address this issue, change the initialization ordering of the\ndriver so that cmos_wake_setup() is always called after a successful\ncmos_do_probe() call.\n\nWhile at it, change cmos_pnp_probe() to call cmos_do_probe() after\nthe initial if () statement used for computing the IRQ argument to\nbe passed to cmos_do_probe() which is cleaner than calling it in\neach branch of that if () (local variable \"irq\" can be of type int,\nbecause it is passed to that function as an argument of type int).\n\nNote that commit 6492fed7d8c9 (\"rtc: rtc-cmos: Do not check\nACPI_FADT_LOW_POWER_S0\") caused this issue to affect a larger number\nof systems, because previously it only affected systems with\nACPI_FADT_LOW_POWER_S0 set, but it is present regardless of that\ncommit.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48953",
          "url": "https://www.suse.com/security/cve/CVE-2022-48953"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231941 for CVE-2022-48953",
          "url": "https://bugzilla.suse.com/1231941"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48953"
    },
    {
      "cve": "CVE-2022-48954",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48954"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/qeth: fix use-after-free in hsci\n\nKASAN found that addr was dereferenced after br2dev_event_work was freed.\n\n==================================================================\nBUG: KASAN: use-after-free in qeth_l2_br2dev_worker+0x5ba/0x6b0\nRead of size 1 at addr 00000000fdcea440 by task kworker/u760:4/540\nCPU: 17 PID: 540 Comm: kworker/u760:4 Tainted: G            E      6.1.0-20221128.rc7.git1.5aa3bed4ce83.300.fc36.s390x+kasan #1\nHardware name: IBM 8561 T01 703 (LPAR)\nWorkqueue: 0.0.8000_event qeth_l2_br2dev_worker\nCall Trace:\n [\u003c000000016944d4ce\u003e] dump_stack_lvl+0xc6/0xf8\n [\u003c000000016942cd9c\u003e] print_address_description.constprop.0+0x34/0x2a0\n [\u003c000000016942d118\u003e] print_report+0x110/0x1f8\n [\u003c0000000167a7bd04\u003e] kasan_report+0xfc/0x128\n [\u003c000000016938d79a\u003e] qeth_l2_br2dev_worker+0x5ba/0x6b0\n [\u003c00000001673edd1e\u003e] process_one_work+0x76e/0x1128\n [\u003c00000001673ee85c\u003e] worker_thread+0x184/0x1098\n [\u003c000000016740718a\u003e] kthread+0x26a/0x310\n [\u003c00000001672c606a\u003e] __ret_from_fork+0x8a/0xe8\n [\u003c00000001694711da\u003e] ret_from_fork+0xa/0x40\nAllocated by task 108338:\n kasan_save_stack+0x40/0x68\n kasan_set_track+0x36/0x48\n __kasan_kmalloc+0xa0/0xc0\n qeth_l2_switchdev_event+0x25a/0x738\n atomic_notifier_call_chain+0x9c/0xf8\n br_switchdev_fdb_notify+0xf4/0x110\n fdb_notify+0x122/0x180\n fdb_add_entry.constprop.0.isra.0+0x312/0x558\n br_fdb_add+0x59e/0x858\n rtnl_fdb_add+0x58a/0x928\n rtnetlink_rcv_msg+0x5f8/0x8d8\n netlink_rcv_skb+0x1f2/0x408\n netlink_unicast+0x570/0x790\n netlink_sendmsg+0x752/0xbe0\n sock_sendmsg+0xca/0x110\n ____sys_sendmsg+0x510/0x6a8\n ___sys_sendmsg+0x12a/0x180\n __sys_sendmsg+0xe6/0x168\n __do_sys_socketcall+0x3c8/0x468\n do_syscall+0x22c/0x328\n __do_syscall+0x94/0xf0\n system_call+0x82/0xb0\nFreed by task 540:\n kasan_save_stack+0x40/0x68\n kasan_set_track+0x36/0x48\n kasan_save_free_info+0x4c/0x68\n ____kasan_slab_free+0x14e/0x1a8\n __kasan_slab_free+0x24/0x30\n __kmem_cache_free+0x168/0x338\n qeth_l2_br2dev_worker+0x154/0x6b0\n process_one_work+0x76e/0x1128\n worker_thread+0x184/0x1098\n kthread+0x26a/0x310\n __ret_from_fork+0x8a/0xe8\n ret_from_fork+0xa/0x40\nLast potentially related work creation:\n kasan_save_stack+0x40/0x68\n __kasan_record_aux_stack+0xbe/0xd0\n insert_work+0x56/0x2e8\n __queue_work+0x4ce/0xd10\n queue_work_on+0xf4/0x100\n qeth_l2_switchdev_event+0x520/0x738\n atomic_notifier_call_chain+0x9c/0xf8\n br_switchdev_fdb_notify+0xf4/0x110\n fdb_notify+0x122/0x180\n fdb_add_entry.constprop.0.isra.0+0x312/0x558\n br_fdb_add+0x59e/0x858\n rtnl_fdb_add+0x58a/0x928\n rtnetlink_rcv_msg+0x5f8/0x8d8\n netlink_rcv_skb+0x1f2/0x408\n netlink_unicast+0x570/0x790\n netlink_sendmsg+0x752/0xbe0\n sock_sendmsg+0xca/0x110\n ____sys_sendmsg+0x510/0x6a8\n ___sys_sendmsg+0x12a/0x180\n __sys_sendmsg+0xe6/0x168\n __do_sys_socketcall+0x3c8/0x468\n do_syscall+0x22c/0x328\n __do_syscall+0x94/0xf0\n system_call+0x82/0xb0\nSecond to last potentially related work creation:\n kasan_save_stack+0x40/0x68\n __kasan_record_aux_stack+0xbe/0xd0\n kvfree_call_rcu+0xb2/0x760\n kernfs_unlink_open_file+0x348/0x430\n kernfs_fop_release+0xc2/0x320\n __fput+0x1ae/0x768\n task_work_run+0x1bc/0x298\n exit_to_user_mode_prepare+0x1a0/0x1a8\n __do_syscall+0x94/0xf0\n system_call+0x82/0xb0\nThe buggy address belongs to the object at 00000000fdcea400\n which belongs to the cache kmalloc-96 of size 96\nThe buggy address is located 64 bytes inside of\n 96-byte region [00000000fdcea400, 00000000fdcea460)\nThe buggy address belongs to the physical page:\npage:000000005a9c26e8 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xfdcea\nflags: 0x3ffff00000000200(slab|node=0|zone=1|lastcpupid=0x1ffff)\nraw: 3ffff00000000200 0000000000000000 0000000100000122 000000008008cc00\nraw: 0000000000000000 0020004100000000 ffffffff00000001 0000000000000000\npage dumped because: kasan: bad access detected\nMemory state around the buggy address:\n 00000000fdcea300: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n 00000000fdcea380: fb fb fb fb fb fb f\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48954",
          "url": "https://www.suse.com/security/cve/CVE-2022-48954"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231972 for CVE-2022-48954",
          "url": "https://bugzilla.suse.com/1231972"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48954"
    },
    {
      "cve": "CVE-2022-48955",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48955"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: thunderbolt: fix memory leak in tbnet_open()\n\nWhen tb_ring_alloc_rx() failed in tbnet_open(), ida that allocated in\ntb_xdomain_alloc_out_hopid() is not released. Add\ntb_xdomain_release_out_hopid() to the error path to release ida.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48955",
          "url": "https://www.suse.com/security/cve/CVE-2022-48955"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231892 for CVE-2022-48955",
          "url": "https://bugzilla.suse.com/1231892"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48955"
    },
    {
      "cve": "CVE-2022-48956",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48956"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: avoid use-after-free in ip6_fragment()\n\nBlamed commit claimed rcu_read_lock() was held by ip6_fragment() callers.\n\nIt seems to not be always true, at least for UDP stack.\n\nsyzbot reported:\n\nBUG: KASAN: use-after-free in ip6_dst_idev include/net/ip6_fib.h:245 [inline]\nBUG: KASAN: use-after-free in ip6_fragment+0x2724/0x2770 net/ipv6/ip6_output.c:951\nRead of size 8 at addr ffff88801d403e80 by task syz-executor.3/7618\n\nCPU: 1 PID: 7618 Comm: syz-executor.3 Not tainted 6.1.0-rc6-syzkaller-00012-g4312098baf37 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd1/0x138 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:284 [inline]\n print_report+0x15e/0x45d mm/kasan/report.c:395\n kasan_report+0xbf/0x1f0 mm/kasan/report.c:495\n ip6_dst_idev include/net/ip6_fib.h:245 [inline]\n ip6_fragment+0x2724/0x2770 net/ipv6/ip6_output.c:951\n __ip6_finish_output net/ipv6/ip6_output.c:193 [inline]\n ip6_finish_output+0x9a3/0x1170 net/ipv6/ip6_output.c:206\n NF_HOOK_COND include/linux/netfilter.h:291 [inline]\n ip6_output+0x1f1/0x540 net/ipv6/ip6_output.c:227\n dst_output include/net/dst.h:445 [inline]\n ip6_local_out+0xb3/0x1a0 net/ipv6/output_core.c:161\n ip6_send_skb+0xbb/0x340 net/ipv6/ip6_output.c:1966\n udp_v6_send_skb+0x82a/0x18a0 net/ipv6/udp.c:1286\n udp_v6_push_pending_frames+0x140/0x200 net/ipv6/udp.c:1313\n udpv6_sendmsg+0x18da/0x2c80 net/ipv6/udp.c:1606\n inet6_sendmsg+0x9d/0xe0 net/ipv6/af_inet6.c:665\n sock_sendmsg_nosec net/socket.c:714 [inline]\n sock_sendmsg+0xd3/0x120 net/socket.c:734\n sock_write_iter+0x295/0x3d0 net/socket.c:1108\n call_write_iter include/linux/fs.h:2191 [inline]\n new_sync_write fs/read_write.c:491 [inline]\n vfs_write+0x9ed/0xdd0 fs/read_write.c:584\n ksys_write+0x1ec/0x250 fs/read_write.c:637\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x39/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7fde3588c0d9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fde365b6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fde359ac050 RCX: 00007fde3588c0d9\nRDX: 000000000000ffdc RSI: 00000000200000c0 RDI: 000000000000000a\nRBP: 00007fde358e7ae9 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007fde35acfb1f R14: 00007fde365b6300 R15: 0000000000022000\n \u003c/TASK\u003e\n\nAllocated by task 7618:\n kasan_save_stack+0x22/0x40 mm/kasan/common.c:45\n kasan_set_track+0x25/0x30 mm/kasan/common.c:52\n __kasan_slab_alloc+0x82/0x90 mm/kasan/common.c:325\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slab.h:737 [inline]\n slab_alloc_node mm/slub.c:3398 [inline]\n slab_alloc mm/slub.c:3406 [inline]\n __kmem_cache_alloc_lru mm/slub.c:3413 [inline]\n kmem_cache_alloc+0x2b4/0x3d0 mm/slub.c:3422\n dst_alloc+0x14a/0x1f0 net/core/dst.c:92\n ip6_dst_alloc+0x32/0xa0 net/ipv6/route.c:344\n ip6_rt_pcpu_alloc net/ipv6/route.c:1369 [inline]\n rt6_make_pcpu_route net/ipv6/route.c:1417 [inline]\n ip6_pol_route+0x901/0x1190 net/ipv6/route.c:2254\n pol_lookup_func include/net/ip6_fib.h:582 [inline]\n fib6_rule_lookup+0x52e/0x6f0 net/ipv6/fib6_rules.c:121\n ip6_route_output_flags_noref+0x2e6/0x380 net/ipv6/route.c:2625\n ip6_route_output_flags+0x76/0x320 net/ipv6/route.c:2638\n ip6_route_output include/net/ip6_route.h:98 [inline]\n ip6_dst_lookup_tail+0x5ab/0x1620 net/ipv6/ip6_output.c:1092\n ip6_dst_lookup_flow+0x90/0x1d0 net/ipv6/ip6_output.c:1222\n ip6_sk_dst_lookup_flow+0x553/0x980 net/ipv6/ip6_output.c:1260\n udpv6_sendmsg+0x151d/0x2c80 net/ipv6/udp.c:1554\n inet6_sendmsg+0x9d/0xe0 net/ipv6/af_inet6.c:665\n sock_sendmsg_nosec n\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48956",
          "url": "https://www.suse.com/security/cve/CVE-2022-48956"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231893 for CVE-2022-48956",
          "url": "https://bugzilla.suse.com/1231893"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232799 for CVE-2022-48956",
          "url": "https://bugzilla.suse.com/1232799"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48956"
    },
    {
      "cve": "CVE-2022-48957",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48957"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndpaa2-switch: Fix memory leak in dpaa2_switch_acl_entry_add() and dpaa2_switch_acl_entry_remove()\n\nThe cmd_buff needs to be freed when error happened in\ndpaa2_switch_acl_entry_add() and dpaa2_switch_acl_entry_remove().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48957",
          "url": "https://www.suse.com/security/cve/CVE-2022-48957"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231973 for CVE-2022-48957",
          "url": "https://bugzilla.suse.com/1231973"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48957"
    },
    {
      "cve": "CVE-2022-48958",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48958"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethernet: aeroflex: fix potential skb leak in greth_init_rings()\n\nThe greth_init_rings() function won\u0027t free the newly allocated skb when\ndma_mapping_error() returns error, so add dev_kfree_skb() to fix it.\n\nCompile tested only.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48958",
          "url": "https://www.suse.com/security/cve/CVE-2022-48958"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231889 for CVE-2022-48958",
          "url": "https://bugzilla.suse.com/1231889"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48958"
    },
    {
      "cve": "CVE-2022-48959",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48959"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: sja1105: fix memory leak in sja1105_setup_devlink_regions()\n\nWhen dsa_devlink_region_create failed in sja1105_setup_devlink_regions(),\npriv-\u003eregions is not released.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48959",
          "url": "https://www.suse.com/security/cve/CVE-2022-48959"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231976 for CVE-2022-48959",
          "url": "https://bugzilla.suse.com/1231976"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48959"
    },
    {
      "cve": "CVE-2022-48960",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48960"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hisilicon: Fix potential use-after-free in hix5hd2_rx()\n\nThe skb is delivered to napi_gro_receive() which may free it, after\ncalling this, dereferencing skb may trigger use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48960",
          "url": "https://www.suse.com/security/cve/CVE-2022-48960"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231979 for CVE-2022-48960",
          "url": "https://bugzilla.suse.com/1231979"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231980 for CVE-2022-48960",
          "url": "https://bugzilla.suse.com/1231980"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2022-48960"
    },
    {
      "cve": "CVE-2022-48961",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48961"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mdio: fix unbalanced fwnode reference count in mdio_device_release()\n\nThere is warning report about of_node refcount leak\nwhile probing mdio device:\n\nOF: ERROR: memory leak, expected refcount 1 instead of 2,\nof_node_get()/of_node_put() unbalanced - destroy cset entry:\nattach overlay node /spi/soc@0/mdio@710700c0/ethernet@4\n\nIn of_mdiobus_register_device(), we increase fwnode refcount\nby fwnode_handle_get() before associating the of_node with\nmdio device, but it has never been decreased in normal path.\nSince that, in mdio_device_release(), it needs to call\nfwnode_handle_put() in addition instead of calling kfree()\ndirectly.\n\nAfter above, just calling mdio_device_free() in the error handle\npath of of_mdiobus_register_device() is enough to keep the\nrefcount balanced.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48961",
          "url": "https://www.suse.com/security/cve/CVE-2022-48961"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232108 for CVE-2022-48961",
          "url": "https://bugzilla.suse.com/1232108"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48961"
    },
    {
      "cve": "CVE-2022-48962",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48962"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hisilicon: Fix potential use-after-free in hisi_femac_rx()\n\nThe skb is delivered to napi_gro_receive() which may free it, after\ncalling this, dereferencing skb may trigger use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48962",
          "url": "https://www.suse.com/security/cve/CVE-2022-48962"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232286 for CVE-2022-48962",
          "url": "https://bugzilla.suse.com/1232286"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232801 for CVE-2022-48962",
          "url": "https://bugzilla.suse.com/1232801"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48962"
    },
    {
      "cve": "CVE-2022-48966",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48966"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mvneta: Prevent out of bounds read in mvneta_config_rss()\n\nThe pp-\u003eindir[0] value comes from the user.  It is passed to:\n\n\tif (cpu_online(pp-\u003erxq_def))\n\ninside the mvneta_percpu_elect() function.  It needs bounds checkeding\nto ensure that it is not beyond the end of the cpu bitmap.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48966",
          "url": "https://www.suse.com/security/cve/CVE-2022-48966"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232191 for CVE-2022-48966",
          "url": "https://bugzilla.suse.com/1232191"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48966"
    },
    {
      "cve": "CVE-2022-48967",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48967"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFC: nci: Bounds check struct nfc_target arrays\n\nWhile running under CONFIG_FORTIFY_SOURCE=y, syzkaller reported:\n\n  memcpy: detected field-spanning write (size 129) of single field \"target-\u003esensf_res\" at net/nfc/nci/ntf.c:260 (size 18)\n\nThis appears to be a legitimate lack of bounds checking in\nnci_add_new_protocol(). Add the missing checks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48967",
          "url": "https://www.suse.com/security/cve/CVE-2022-48967"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232304 for CVE-2022-48967",
          "url": "https://bugzilla.suse.com/1232304"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232306 for CVE-2022-48967",
          "url": "https://bugzilla.suse.com/1232306"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48967"
    },
    {
      "cve": "CVE-2022-48968",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48968"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: Fix potential memory leak in otx2_init_tc()\n\nIn otx2_init_tc(), if rhashtable_init() failed, it does not free\ntc-\u003etc_entries_bitmap which is allocated in otx2_tc_alloc_ent_bitmap().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48968",
          "url": "https://www.suse.com/security/cve/CVE-2022-48968"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232237 for CVE-2022-48968",
          "url": "https://bugzilla.suse.com/1232237"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48968"
    },
    {
      "cve": "CVE-2022-48969",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48969"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen-netfront: Fix NULL sring after live migration\n\nA NAPI is setup for each network sring to poll data to kernel\nThe sring with source host is destroyed before live migration and\nnew sring with target host is setup after live migration.\nThe NAPI for the old sring is not deleted until setup new sring\nwith target host after migration. With busy_poll/busy_read enabled,\nthe NAPI can be polled before got deleted when resume VM.\n\nBUG: unable to handle kernel NULL pointer dereference at\n0000000000000008\nIP: xennet_poll+0xae/0xd20\nPGD 0 P4D 0\nOops: 0000 [#1] SMP PTI\nCall Trace:\n finish_task_switch+0x71/0x230\n timerqueue_del+0x1d/0x40\n hrtimer_try_to_cancel+0xb5/0x110\n xennet_alloc_rx_buffers+0x2a0/0x2a0\n napi_busy_loop+0xdb/0x270\n sock_poll+0x87/0x90\n do_sys_poll+0x26f/0x580\n tracing_map_insert+0x1d4/0x2f0\n event_hist_trigger+0x14a/0x260\n\n finish_task_switch+0x71/0x230\n __schedule+0x256/0x890\n recalc_sigpending+0x1b/0x50\n xen_sched_clock+0x15/0x20\n __rb_reserve_next+0x12d/0x140\n ring_buffer_lock_reserve+0x123/0x3d0\n event_triggers_call+0x87/0xb0\n trace_event_buffer_commit+0x1c4/0x210\n xen_clocksource_get_cycles+0x15/0x20\n ktime_get_ts64+0x51/0xf0\n SyS_ppoll+0x160/0x1a0\n SyS_ppoll+0x160/0x1a0\n do_syscall_64+0x73/0x130\n entry_SYSCALL_64_after_hwframe+0x41/0xa6\n...\nRIP: xennet_poll+0xae/0xd20 RSP: ffffb4f041933900\nCR2: 0000000000000008\n---[ end trace f8601785b354351c ]---\n\nxen frontend should remove the NAPIs for the old srings before live\nmigration as the bond srings are destroyed\n\nThere is a tiny window between the srings are set to NULL and\nthe NAPIs are disabled, It is safe as the NAPI threads are still\nfrozen at that time",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48969",
          "url": "https://www.suse.com/security/cve/CVE-2022-48969"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232026 for CVE-2022-48969",
          "url": "https://bugzilla.suse.com/1232026"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48969"
    },
    {
      "cve": "CVE-2022-48970",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48970"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Get user_ns from in_skb in unix_diag_get_exact().\n\nWei Chen reported a NULL deref in sk_user_ns() [0][1], and Paolo diagnosed\nthe root cause: in unix_diag_get_exact(), the newly allocated skb does not\nhave sk. [2]\n\nWe must get the user_ns from the NETLINK_CB(in_skb).sk and pass it to\nsk_diag_fill().\n\n[0]:\nBUG: kernel NULL pointer dereference, address: 0000000000000270\n#PF: supervisor read access in kernel mode\n#PF: error_code(0x0000) - not-present page\nPGD 12bbce067 P4D 12bbce067 PUD 12bc40067 PMD 0\nOops: 0000 [#1] PREEMPT SMP\nCPU: 0 PID: 27942 Comm: syz-executor.0 Not tainted 6.1.0-rc5-next-20221118 #2\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\nrel-1.13.0-48-gd9c812dda519-prebuilt.qemu.org 04/01/2014\nRIP: 0010:sk_user_ns include/net/sock.h:920 [inline]\nRIP: 0010:sk_diag_dump_uid net/unix/diag.c:119 [inline]\nRIP: 0010:sk_diag_fill+0x77d/0x890 net/unix/diag.c:170\nCode: 89 ef e8 66 d4 2d fd c7 44 24 40 00 00 00 00 49 8d 7c 24 18 e8\n54 d7 2d fd 49 8b 5c 24 18 48 8d bb 70 02 00 00 e8 43 d7 2d fd \u003c48\u003e 8b\n9b 70 02 00 00 48 8d 7b 10 e8 33 d7 2d fd 48 8b 5b 10 48 8d\nRSP: 0018:ffffc90000d67968 EFLAGS: 00010246\nRAX: ffff88812badaa48 RBX: 0000000000000000 RCX: ffffffff840d481d\nRDX: 0000000000000465 RSI: 0000000000000000 RDI: 0000000000000270\nRBP: ffffc90000d679a8 R08: 0000000000000277 R09: 0000000000000000\nR10: 0001ffffffffffff R11: 0001c90000d679a8 R12: ffff88812ac03800\nR13: ffff88812c87c400 R14: ffff88812ae42210 R15: ffff888103026940\nFS:  00007f08b4e6f700(0000) GS:ffff88813bc00000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000270 CR3: 000000012c58b000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n unix_diag_get_exact net/unix/diag.c:285 [inline]\n unix_diag_handler_dump+0x3f9/0x500 net/unix/diag.c:317\n __sock_diag_cmd net/core/sock_diag.c:235 [inline]\n sock_diag_rcv_msg+0x237/0x250 net/core/sock_diag.c:266\n netlink_rcv_skb+0x13e/0x250 net/netlink/af_netlink.c:2564\n sock_diag_rcv+0x24/0x40 net/core/sock_diag.c:277\n netlink_unicast_kernel net/netlink/af_netlink.c:1330 [inline]\n netlink_unicast+0x5e9/0x6b0 net/netlink/af_netlink.c:1356\n netlink_sendmsg+0x739/0x860 net/netlink/af_netlink.c:1932\n sock_sendmsg_nosec net/socket.c:714 [inline]\n sock_sendmsg net/socket.c:734 [inline]\n ____sys_sendmsg+0x38f/0x500 net/socket.c:2476\n ___sys_sendmsg net/socket.c:2530 [inline]\n __sys_sendmsg+0x197/0x230 net/socket.c:2559\n __do_sys_sendmsg net/socket.c:2568 [inline]\n __se_sys_sendmsg net/socket.c:2566 [inline]\n __x64_sys_sendmsg+0x42/0x50 net/socket.c:2566\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x2b/0x70 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x4697f9\nCode: f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 48 89 f8 48\n89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d\n01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f08b4e6ec48 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 000000000077bf80 RCX: 00000000004697f9\nRDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003\nRBP: 00000000004d29e9 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 000000000077bf80\nR13: 0000000000000000 R14: 000000000077bf80 R15: 00007ffdb36bc6c0\n \u003c/TASK\u003e\nModules linked in:\nCR2: 0000000000000270\n\n[1]: https://lore.kernel.org/netdev/CAO4mrfdvyjFpokhNsiwZiP-wpdSD0AStcJwfKcKQdAALQ9_2Qw@mail.gmail.com/\n[2]: https://lore.kernel.org/netdev/e04315e7c90d9a75613f3993c2baf2d344eef7eb.camel@redhat.com/",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48970",
          "url": "https://www.suse.com/security/cve/CVE-2022-48970"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231887 for CVE-2022-48970",
          "url": "https://bugzilla.suse.com/1231887"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48970"
    },
    {
      "cve": "CVE-2022-48971",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48971"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: Fix not cleanup led when bt_init fails\n\nbt_init() calls bt_leds_init() to register led, but if it fails later,\nbt_leds_cleanup() is not called to unregister it.\n\nThis can cause panic if the argument \"bluetooth-power\" in text is freed\nand then another led_trigger_register() tries to access it:\n\nBUG: unable to handle page fault for address: ffffffffc06d3bc0\nRIP: 0010:strcmp+0xc/0x30\n  Call Trace:\n    \u003cTASK\u003e\n    led_trigger_register+0x10d/0x4f0\n    led_trigger_register_simple+0x7d/0x100\n    bt_init+0x39/0xf7 [bluetooth]\n    do_one_initcall+0xd0/0x4e0",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48971",
          "url": "https://www.suse.com/security/cve/CVE-2022-48971"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232037 for CVE-2022-48971",
          "url": "https://bugzilla.suse.com/1232037"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48971"
    },
    {
      "cve": "CVE-2022-48972",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48972"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmac802154: fix missing INIT_LIST_HEAD in ieee802154_if_add()\n\nKernel fault injection test reports null-ptr-deref as follows:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000008\nRIP: 0010:cfg802154_netdev_notifier_call+0x120/0x310 include/linux/list.h:114\nCall Trace:\n \u003cTASK\u003e\n raw_notifier_call_chain+0x6d/0xa0 kernel/notifier.c:87\n call_netdevice_notifiers_info+0x6e/0xc0 net/core/dev.c:1944\n unregister_netdevice_many_notify+0x60d/0xcb0 net/core/dev.c:1982\n unregister_netdevice_queue+0x154/0x1a0 net/core/dev.c:10879\n register_netdevice+0x9a8/0xb90 net/core/dev.c:10083\n ieee802154_if_add+0x6ed/0x7e0 net/mac802154/iface.c:659\n ieee802154_register_hw+0x29c/0x330 net/mac802154/main.c:229\n mcr20a_probe+0xaaa/0xcb1 drivers/net/ieee802154/mcr20a.c:1316\n\nieee802154_if_add() allocates wpan_dev as netdev\u0027s private data, but not\ninit the list in struct wpan_dev. cfg802154_netdev_notifier_call() manage\nthe list when device register/unregister, and may lead to null-ptr-deref.\n\nUse INIT_LIST_HEAD() on it to initialize it correctly.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48972",
          "url": "https://www.suse.com/security/cve/CVE-2022-48972"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232025 for CVE-2022-48972",
          "url": "https://bugzilla.suse.com/1232025"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48972"
    },
    {
      "cve": "CVE-2022-48973",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48973"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: amd8111: Fix PCI device reference count leak\n\nfor_each_pci_dev() is implemented by pci_get_device(). The comment of\npci_get_device() says that it will increase the reference count for the\nreturned pci_dev and also decrease the reference count for the input\npci_dev @from if it is not NULL.\n\nIf we break for_each_pci_dev() loop with pdev not NULL, we need to call\npci_dev_put() to decrease the reference count. Add the missing\npci_dev_put() after the \u0027out\u0027 label. Since pci_dev_put() can handle NULL\ninput parameter, there is no problem for the \u0027Device not found\u0027 branch.\nFor the normal path, add pci_dev_put() in amd_gpio_exit().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48973",
          "url": "https://www.suse.com/security/cve/CVE-2022-48973"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232039 for CVE-2022-48973",
          "url": "https://bugzilla.suse.com/1232039"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48973"
    },
    {
      "cve": "CVE-2022-48975",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48975"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: fix memory leak in gpiochip_setup_dev()\n\nHere is a backtrace report about memory leak detected in\ngpiochip_setup_dev():\n\nunreferenced object 0xffff88810b406400 (size 512):\n  comm \"python3\", pid 1682, jiffies 4295346908 (age 24.090s)\n  backtrace:\n    kmalloc_trace\n    device_add\t\tdevice_private_init at drivers/base/core.c:3361\n\t\t\t(inlined by) device_add at drivers/base/core.c:3411\n    cdev_device_add\n    gpiolib_cdev_register\n    gpiochip_setup_dev\n    gpiochip_add_data_with_key\n\ngcdev_register() \u0026 gcdev_unregister() would call device_add() \u0026\ndevice_del() (no matter CONFIG_GPIO_CDEV is enabled or not) to\nregister/unregister device.\n\nHowever, if device_add() succeeds, some resource (like\nstruct device_private allocated by device_private_init())\nis not released by device_del().\n\nTherefore, after device_add() succeeds by gcdev_register(), it\nneeds to call put_device() to release resource in the error handle\npath.\n\nHere we move forward the register of release function, and let it\nrelease every piece of resource by put_device() instead of kfree().\n\nWhile at it, fix another subtle issue, i.e. when gc-\u003engpio is equal\nto 0, we still call kcalloc() and, in case of further error, kfree()\non the ZERO_PTR pointer, which is not NULL. It\u0027s not a bug per se,\nbut rather waste of the resources and potentially wrong expectation\nabout contents of the gdev-\u003edescs variable.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48975",
          "url": "https://www.suse.com/security/cve/CVE-2022-48975"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231885 for CVE-2022-48975",
          "url": "https://bugzilla.suse.com/1231885"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48975"
    },
    {
      "cve": "CVE-2022-48977",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48977"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: af_can: fix NULL pointer dereference in can_rcv_filter\n\nAnalogue to commit 8aa59e355949 (\"can: af_can: fix NULL pointer\ndereference in can_rx_register()\") we need to check for a missing\ninitialization of ml_priv in the receive path of CAN frames.\n\nSince commit 4e096a18867a (\"net: introduce CAN specific pointer in the\nstruct net_device\") the check for dev-\u003etype to be ARPHRD_CAN is not\nsufficient anymore since bonding or tun netdevices claim to be CAN\ndevices but do not initialize ml_priv accordingly.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48977",
          "url": "https://www.suse.com/security/cve/CVE-2022-48977"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231883 for CVE-2022-48977",
          "url": "https://bugzilla.suse.com/1231883"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48977"
    },
    {
      "cve": "CVE-2022-48978",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48978"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: core: fix shift-out-of-bounds in hid_report_raw_event\n\nSyzbot reported shift-out-of-bounds in hid_report_raw_event.\n\nmicrosoft 0003:045E:07DA.0001: hid_field_extract() called with n (128) \u003e\n32! (swapper/0)\n======================================================================\nUBSAN: shift-out-of-bounds in drivers/hid/hid-core.c:1323:20\nshift exponent 127 is too large for 32-bit type \u0027int\u0027\nCPU: 0 PID: 0 Comm: swapper/0 Not tainted\n6.1.0-rc4-syzkaller-00159-g4bbf3422df78 #0\nHardware name: Google Compute Engine/Google Compute Engine, BIOS\nGoogle 10/26/2022\nCall Trace:\n \u003cIRQ\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x1e3/0x2cb lib/dump_stack.c:106\n ubsan_epilogue lib/ubsan.c:151 [inline]\n __ubsan_handle_shift_out_of_bounds+0x3a6/0x420 lib/ubsan.c:322\n snto32 drivers/hid/hid-core.c:1323 [inline]\n hid_input_fetch_field drivers/hid/hid-core.c:1572 [inline]\n hid_process_report drivers/hid/hid-core.c:1665 [inline]\n hid_report_raw_event+0xd56/0x18b0 drivers/hid/hid-core.c:1998\n hid_input_report+0x408/0x4f0 drivers/hid/hid-core.c:2066\n hid_irq_in+0x459/0x690 drivers/hid/usbhid/hid-core.c:284\n __usb_hcd_giveback_urb+0x369/0x530 drivers/usb/core/hcd.c:1671\n dummy_timer+0x86b/0x3110 drivers/usb/gadget/udc/dummy_hcd.c:1988\n call_timer_fn+0xf5/0x210 kernel/time/timer.c:1474\n expire_timers kernel/time/timer.c:1519 [inline]\n __run_timers+0x76a/0x980 kernel/time/timer.c:1790\n run_timer_softirq+0x63/0xf0 kernel/time/timer.c:1803\n __do_softirq+0x277/0x75b kernel/softirq.c:571\n __irq_exit_rcu+0xec/0x170 kernel/softirq.c:650\n irq_exit_rcu+0x5/0x20 kernel/softirq.c:662\n sysvec_apic_timer_interrupt+0x91/0xb0 arch/x86/kernel/apic/apic.c:1107\n======================================================================\n\nIf the size of the integer (unsigned n) is bigger than 32 in snto32(),\nshift exponent will be too large for 32-bit type \u0027int\u0027, resulting in a\nshift-out-of-bounds bug.\nFix this by adding a check on the size of the integer (unsigned n) in\nsnto32(). To add support for n greater than 32 bits, set n to 32, if n\nis greater than 32.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48978",
          "url": "https://www.suse.com/security/cve/CVE-2022-48978"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232038 for CVE-2022-48978",
          "url": "https://bugzilla.suse.com/1232038"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48978"
    },
    {
      "cve": "CVE-2022-48980",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48980"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: sja1105: avoid out of bounds access in sja1105_init_l2_policing()\n\nThe SJA1105 family has 45 L2 policing table entries\n(SJA1105_MAX_L2_POLICING_COUNT) and SJA1110 has 110\n(SJA1110_MAX_L2_POLICING_COUNT). Keeping the table structure but\naccounting for the difference in port count (5 in SJA1105 vs 10 in\nSJA1110) does not fully explain the difference. Rather, the SJA1110 also\nhas L2 ingress policers for multicast traffic. If a packet is classified\nas multicast, it will be processed by the policer index 99 + SRCPORT.\n\nThe sja1105_init_l2_policing() function initializes all L2 policers such\nthat they don\u0027t interfere with normal packet reception by default. To have\na common code between SJA1105 and SJA1110, the index of the multicast\npolicer for the port is calculated because it\u0027s an index that is out of\nbounds for SJA1105 but in bounds for SJA1110, and a bounds check is\nperformed.\n\nThe code fails to do the proper thing when determining what to do with the\nmulticast policer of port 0 on SJA1105 (ds-\u003enum_ports = 5). The \"mcast\"\nindex will be equal to 45, which is also equal to\ntable-\u003eops-\u003emax_entry_count (SJA1105_MAX_L2_POLICING_COUNT). So it passes\nthrough the check. But at the same time, SJA1105 doesn\u0027t have multicast\npolicers. So the code programs the SHARINDX field of an out-of-bounds\nelement in the L2 Policing table of the static config.\n\nThe comparison between index 45 and 45 entries should have determined the\ncode to not access this policer index on SJA1105, since its memory wasn\u0027t\neven allocated.\n\nWith enough bad luck, the out-of-bounds write could even overwrite other\nvalid kernel data, but in this case, the issue was detected using KASAN.\n\nKernel log:\n\nsja1105 spi5.0: Probed switch chip: SJA1105Q\n==================================================================\nBUG: KASAN: slab-out-of-bounds in sja1105_setup+0x1cbc/0x2340\nWrite of size 8 at addr ffffff880bd57708 by task kworker/u8:0/8\n...\nWorkqueue: events_unbound deferred_probe_work_func\nCall trace:\n...\nsja1105_setup+0x1cbc/0x2340\ndsa_register_switch+0x1284/0x18d0\nsja1105_probe+0x748/0x840\n...\nAllocated by task 8:\n...\nsja1105_setup+0x1bcc/0x2340\ndsa_register_switch+0x1284/0x18d0\nsja1105_probe+0x748/0x840\n...",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48980",
          "url": "https://www.suse.com/security/cve/CVE-2022-48980"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232233 for CVE-2022-48980",
          "url": "https://bugzilla.suse.com/1232233"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48980"
    },
    {
      "cve": "CVE-2022-48981",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48981"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/shmem-helper: Remove errant put in error path\n\ndrm_gem_shmem_mmap() doesn\u0027t own this reference, resulting in the GEM\nobject getting prematurely freed leading to a later use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48981",
          "url": "https://www.suse.com/security/cve/CVE-2022-48981"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232229 for CVE-2022-48981",
          "url": "https://bugzilla.suse.com/1232229"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48981"
    },
    {
      "cve": "CVE-2022-48985",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48985"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix race on per-CQ variable napi work_done\n\nAfter calling napi_complete_done(), the NAPIF_STATE_SCHED bit may be\ncleared, and another CPU can start napi thread and access per-CQ variable,\ncq-\u003ework_done. If the other thread (for example, from busy_poll) sets\nit to a value \u003e= budget, this thread will continue to run when it should\nstop, and cause memory corruption and panic.\n\nTo fix this issue, save the per-CQ work_done variable in a local variable\nbefore napi_complete_done(), so it won\u0027t be corrupted by a possible\nconcurrent thread after napi_complete_done().\n\nAlso, add a flag bit to advertise to the NIC firmware: the NAPI work_done\nvariable race is fixed, so the driver is able to reliably support features\nlike busy_poll.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48985",
          "url": "https://www.suse.com/security/cve/CVE-2022-48985"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231958 for CVE-2022-48985",
          "url": "https://bugzilla.suse.com/1231958"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48985"
    },
    {
      "cve": "CVE-2022-48987",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48987"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: v4l2-dv-timings.c: fix too strict blanking sanity checks\n\nSanity checks were added to verify the v4l2_bt_timings blanking fields\nin order to avoid integer overflows when userspace passes weird values.\n\nBut that assumed that userspace would correctly fill in the front porch,\nbackporch and sync values, but sometimes all you know is the total\nblanking, which is then assigned to just one of these fields.\n\nAnd that can fail with these checks.\n\nSo instead set a maximum for the total horizontal and vertical\nblanking and check that each field remains below that.\n\nThat is still sufficient to avoid integer overflows, but it also\nallows for more flexibility in how userspace fills in these fields.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48987",
          "url": "https://www.suse.com/security/cve/CVE-2022-48987"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232067 for CVE-2022-48987",
          "url": "https://bugzilla.suse.com/1232067"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48987"
    },
    {
      "cve": "CVE-2022-48988",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48988"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmemcg: fix possible use-after-free in memcg_write_event_control()\n\nmemcg_write_event_control() accesses the dentry-\u003ed_name of the specified\ncontrol fd to route the write call.  As a cgroup interface file can\u0027t be\nrenamed, it\u0027s safe to access d_name as long as the specified file is a\nregular cgroup file.  Also, as these cgroup interface files can\u0027t be\nremoved before the directory, it\u0027s safe to access the parent too.\n\nPrior to 347c4a874710 (\"memcg: remove cgroup_event-\u003ecft\"), there was a\ncall to __file_cft() which verified that the specified file is a regular\ncgroupfs file before further accesses.  The cftype pointer returned from\n__file_cft() was no longer necessary and the commit inadvertently dropped\nthe file type check with it allowing any file to slip through.  With the\ninvarients broken, the d_name and parent accesses can now race against\nrenames and removals of arbitrary files and cause use-after-free\u0027s.\n\nFix the bug by resurrecting the file type check in __file_cft().  Now that\ncgroupfs is implemented through kernfs, checking the file operations needs\nto go through a layer of indirection.  Instead, let\u0027s check the superblock\nand dentry type.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48988",
          "url": "https://www.suse.com/security/cve/CVE-2022-48988"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232069 for CVE-2022-48988",
          "url": "https://bugzilla.suse.com/1232069"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232106 for CVE-2022-48988",
          "url": "https://bugzilla.suse.com/1232106"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48988"
    },
    {
      "cve": "CVE-2022-48991",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48991"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/khugepaged: invoke MMU notifiers in shmem/file collapse paths\n\nAny codepath that zaps page table entries must invoke MMU notifiers to\nensure that secondary MMUs (like KVM) don\u0027t keep accessing pages which\naren\u0027t mapped anymore.  Secondary MMUs don\u0027t hold their own references to\npages that are mirrored over, so failing to notify them can lead to page\nuse-after-free.\n\nI\u0027m marking this as addressing an issue introduced in commit f3f0e1d2150b\n(\"khugepaged: add support of collapse for tmpfs/shmem pages\"), but most of\nthe security impact of this only came in commit 27e1f8273113 (\"khugepaged:\nenable collapse pmd for pte-mapped THP\"), which actually omitted flushes\nfor the removal of present PTEs, not just for the removal of empty page\ntables.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48991",
          "url": "https://www.suse.com/security/cve/CVE-2022-48991"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232070 for CVE-2022-48991",
          "url": "https://bugzilla.suse.com/1232070"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232372 for CVE-2022-48991",
          "url": "https://bugzilla.suse.com/1232372"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48991"
    },
    {
      "cve": "CVE-2022-48992",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48992"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: soc-pcm: Add NULL check in BE reparenting\n\nAdd NULL check in dpcm_be_reparent API, to handle\nkernel NULL pointer dereference error.\nThe issue occurred in fuzzing test.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48992",
          "url": "https://www.suse.com/security/cve/CVE-2022-48992"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232071 for CVE-2022-48992",
          "url": "https://bugzilla.suse.com/1232071"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48992"
    },
    {
      "cve": "CVE-2022-48994",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48994"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: seq: Fix function prototype mismatch in snd_seq_expand_var_event\n\nWith clang\u0027s kernel control flow integrity (kCFI, CONFIG_CFI_CLANG),\nindirect call targets are validated against the expected function\npointer prototype to make sure the call target is valid to help mitigate\nROP attacks. If they are not identical, there is a failure at run time,\nwhich manifests as either a kernel panic or thread getting killed.\n\nseq_copy_in_user() and seq_copy_in_kernel() did not have prototypes\nmatching snd_seq_dump_func_t. Adjust this and remove the casts. There\nare not resulting binary output differences.\n\nThis was found as a result of Clang\u0027s new -Wcast-function-type-strict\nflag, which is more sensitive than the simpler -Wcast-function-type,\nwhich only checks for type width mismatches.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48994",
          "url": "https://www.suse.com/security/cve/CVE-2022-48994"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232119 for CVE-2022-48994",
          "url": "https://bugzilla.suse.com/1232119"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 0,
            "baseSeverity": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48994"
    },
    {
      "cve": "CVE-2022-48995",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48995"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: raydium_ts_i2c - fix memory leak in raydium_i2c_send()\n\nThere is a kmemleak when test the raydium_i2c_ts with bpf mock device:\n\n  unreferenced object 0xffff88812d3675a0 (size 8):\n    comm \"python3\", pid 349, jiffies 4294741067 (age 95.695s)\n    hex dump (first 8 bytes):\n      11 0e 10 c0 01 00 04 00                          ........\n    backtrace:\n      [\u003c0000000068427125\u003e] __kmalloc+0x46/0x1b0\n      [\u003c0000000090180f91\u003e] raydium_i2c_send+0xd4/0x2bf [raydium_i2c_ts]\n      [\u003c000000006e631aee\u003e] raydium_i2c_initialize.cold+0xbc/0x3e4 [raydium_i2c_ts]\n      [\u003c00000000dc6fcf38\u003e] raydium_i2c_probe+0x3cd/0x6bc [raydium_i2c_ts]\n      [\u003c00000000a310de16\u003e] i2c_device_probe+0x651/0x680\n      [\u003c00000000f5a96bf3\u003e] really_probe+0x17c/0x3f0\n      [\u003c00000000096ba499\u003e] __driver_probe_device+0xe3/0x170\n      [\u003c00000000c5acb4d9\u003e] driver_probe_device+0x49/0x120\n      [\u003c00000000264fe082\u003e] __device_attach_driver+0xf7/0x150\n      [\u003c00000000f919423c\u003e] bus_for_each_drv+0x114/0x180\n      [\u003c00000000e067feca\u003e] __device_attach+0x1e5/0x2d0\n      [\u003c0000000054301fc2\u003e] bus_probe_device+0x126/0x140\n      [\u003c00000000aad93b22\u003e] device_add+0x810/0x1130\n      [\u003c00000000c086a53f\u003e] i2c_new_client_device+0x352/0x4e0\n      [\u003c000000003c2c248c\u003e] of_i2c_register_device+0xf1/0x110\n      [\u003c00000000ffec4177\u003e] of_i2c_notify+0x100/0x160\n  unreferenced object 0xffff88812d3675c8 (size 8):\n    comm \"python3\", pid 349, jiffies 4294741070 (age 95.692s)\n    hex dump (first 8 bytes):\n      22 00 36 2d 81 88 ff ff                          \".6-....\n    backtrace:\n      [\u003c0000000068427125\u003e] __kmalloc+0x46/0x1b0\n      [\u003c0000000090180f91\u003e] raydium_i2c_send+0xd4/0x2bf [raydium_i2c_ts]\n      [\u003c000000001d5c9620\u003e] raydium_i2c_initialize.cold+0x223/0x3e4 [raydium_i2c_ts]\n      [\u003c00000000dc6fcf38\u003e] raydium_i2c_probe+0x3cd/0x6bc [raydium_i2c_ts]\n      [\u003c00000000a310de16\u003e] i2c_device_probe+0x651/0x680\n      [\u003c00000000f5a96bf3\u003e] really_probe+0x17c/0x3f0\n      [\u003c00000000096ba499\u003e] __driver_probe_device+0xe3/0x170\n      [\u003c00000000c5acb4d9\u003e] driver_probe_device+0x49/0x120\n      [\u003c00000000264fe082\u003e] __device_attach_driver+0xf7/0x150\n      [\u003c00000000f919423c\u003e] bus_for_each_drv+0x114/0x180\n      [\u003c00000000e067feca\u003e] __device_attach+0x1e5/0x2d0\n      [\u003c0000000054301fc2\u003e] bus_probe_device+0x126/0x140\n      [\u003c00000000aad93b22\u003e] device_add+0x810/0x1130\n      [\u003c00000000c086a53f\u003e] i2c_new_client_device+0x352/0x4e0\n      [\u003c000000003c2c248c\u003e] of_i2c_register_device+0xf1/0x110\n      [\u003c00000000ffec4177\u003e] of_i2c_notify+0x100/0x160\n\nAfter BANK_SWITCH command from i2c BUS, no matter success or error\nhappened, the tx_buf should be freed.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48995",
          "url": "https://www.suse.com/security/cve/CVE-2022-48995"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232120 for CVE-2022-48995",
          "url": "https://bugzilla.suse.com/1232120"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48995"
    },
    {
      "cve": "CVE-2022-48997",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48997"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: tpm: Protect tpm_pm_suspend with locks\n\nCurrently tpm transactions are executed unconditionally in\ntpm_pm_suspend() function, which may lead to races with other tpm\naccessors in the system.\n\nSpecifically, the hw_random tpm driver makes use of tpm_get_random(),\nand this function is called in a loop from a kthread, which means it\u0027s\nnot frozen alongside userspace, and so can race with the work done\nduring system suspend:\n\n  tpm tpm0: tpm_transmit: tpm_recv: error -52\n  tpm tpm0: invalid TPM_STS.x 0xff, dumping stack for forensics\n  CPU: 0 PID: 1 Comm: init Not tainted 6.1.0-rc5+ #135\n  Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.0-20220807_005459-localhost 04/01/2014\n  Call Trace:\n   tpm_tis_status.cold+0x19/0x20\n   tpm_transmit+0x13b/0x390\n   tpm_transmit_cmd+0x20/0x80\n   tpm1_pm_suspend+0xa6/0x110\n   tpm_pm_suspend+0x53/0x80\n   __pnp_bus_suspend+0x35/0xe0\n   __device_suspend+0x10f/0x350\n\nFix this by calling tpm_try_get_ops(), which itself is a wrapper around\ntpm_chip_start(), but takes the appropriate mutex.\n\n[Jason: reworked commit message, added metadata]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48997",
          "url": "https://www.suse.com/security/cve/CVE-2022-48997"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232035 for CVE-2022-48997",
          "url": "https://bugzilla.suse.com/1232035"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.2,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48997"
    },
    {
      "cve": "CVE-2022-48999",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48999"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: Handle attempt to delete multipath route when fib_info contains an nh reference\n\nGwangun Jung reported a slab-out-of-bounds access in fib_nh_match:\n    fib_nh_match+0xf98/0x1130 linux-6.0-rc7/net/ipv4/fib_semantics.c:961\n    fib_table_delete+0x5f3/0xa40 linux-6.0-rc7/net/ipv4/fib_trie.c:1753\n    inet_rtm_delroute+0x2b3/0x380 linux-6.0-rc7/net/ipv4/fib_frontend.c:874\n\nSeparate nexthop objects are mutually exclusive with the legacy\nmultipath spec. Fix fib_nh_match to return if the config for the\nto be deleted route contains a multipath spec while the fib_info\nis using a nexthop object.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48999",
          "url": "https://www.suse.com/security/cve/CVE-2022-48999"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231936 for CVE-2022-48999",
          "url": "https://bugzilla.suse.com/1231936"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48999"
    },
    {
      "cve": "CVE-2022-49000",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49000"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Fix PCI device refcount leak in has_external_pci()\n\nfor_each_pci_dev() is implemented by pci_get_device(). The comment of\npci_get_device() says that it will increase the reference count for the\nreturned pci_dev and also decrease the reference count for the input\npci_dev @from if it is not NULL.\n\nIf we break for_each_pci_dev() loop with pdev not NULL, we need to call\npci_dev_put() to decrease the reference count. Add the missing\npci_dev_put() before \u0027return true\u0027 to avoid reference count leak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49000",
          "url": "https://www.suse.com/security/cve/CVE-2022-49000"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232123 for CVE-2022-49000",
          "url": "https://bugzilla.suse.com/1232123"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49000"
    },
    {
      "cve": "CVE-2022-49002",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49002"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Fix PCI device refcount leak in dmar_dev_scope_init()\n\nfor_each_pci_dev() is implemented by pci_get_device(). The comment of\npci_get_device() says that it will increase the reference count for the\nreturned pci_dev and also decrease the reference count for the input\npci_dev @from if it is not NULL.\n\nIf we break for_each_pci_dev() loop with pdev not NULL, we need to call\npci_dev_put() to decrease the reference count. Add the missing\npci_dev_put() for the error path to avoid reference count leak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49002",
          "url": "https://www.suse.com/security/cve/CVE-2022-49002"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232133 for CVE-2022-49002",
          "url": "https://bugzilla.suse.com/1232133"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-49002"
    },
    {
      "cve": "CVE-2022-49003",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49003"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: fix SRCU protection of nvme_ns_head list\n\nWalking the nvme_ns_head siblings list is protected by the head\u0027s srcu\nin nvme_ns_head_submit_bio() but not nvme_mpath_revalidate_paths().\nRemoving namespaces from the list also fails to synchronize the srcu.\nConcurrent scan work can therefore cause use-after-frees.\n\nHold the head\u0027s srcu lock in nvme_mpath_revalidate_paths() and\nsynchronize with the srcu, not the global RCU, in nvme_ns_remove().\n\nObserved the following panic when making NVMe/RDMA connections\nwith native multipath on the Rocky Linux 8.6 kernel\n(it seems the upstream kernel has the same race condition).\nDisassembly shows the faulting instruction is cmp 0x50(%rdx),%rcx;\ncomputing capacity != get_capacity(ns-\u003edisk).\nAddress 0x50 is dereferenced because ns-\u003edisk is NULL.\nThe NULL disk appears to be the result of concurrent scan work\nfreeing the namespace (note the log line in the middle of the panic).\n\n[37314.206036] BUG: unable to handle kernel NULL pointer dereference at 0000000000000050\n[37314.206036] nvme0n3: detected capacity change from 0 to 11811160064\n[37314.299753] PGD 0 P4D 0\n[37314.299756] Oops: 0000 [#1] SMP PTI\n[37314.299759] CPU: 29 PID: 322046 Comm: kworker/u98:3 Kdump: loaded Tainted: G        W      X --------- -  - 4.18.0-372.32.1.el8test86.x86_64 #1\n[37314.299762] Hardware name: Dell Inc. PowerEdge R720/0JP31P, BIOS 2.7.0 05/23/2018\n[37314.299763] Workqueue: nvme-wq nvme_scan_work [nvme_core]\n[37314.299783] RIP: 0010:nvme_mpath_revalidate_paths+0x26/0xb0 [nvme_core]\n[37314.299790] Code: 1f 44 00 00 66 66 66 66 90 55 53 48 8b 5f 50 48 8b 83 c8 c9 00 00 48 8b 13 48 8b 48 50 48 39 d3 74 20 48 8d 42 d0 48 8b 50 20 \u003c48\u003e 3b 4a 50 74 05 f0 80 60 70 ef 48 8b 50 30 48 8d 42 d0 48 39 d3\n[37315.058803] RSP: 0018:ffffabe28f913d10 EFLAGS: 00010202\n[37315.121316] RAX: ffff927a077da800 RBX: ffff92991dd70000 RCX: 0000000001600000\n[37315.206704] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff92991b719800\n[37315.292106] RBP: ffff929a6b70c000 R08: 000000010234cd4a R09: c0000000ffff7fff\n[37315.377501] R10: 0000000000000001 R11: ffffabe28f913a30 R12: 0000000000000000\n[37315.462889] R13: ffff92992716600c R14: ffff929964e6e030 R15: ffff92991dd70000\n[37315.548286] FS:  0000000000000000(0000) GS:ffff92b87fb80000(0000) knlGS:0000000000000000\n[37315.645111] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[37315.713871] CR2: 0000000000000050 CR3: 0000002208810006 CR4: 00000000000606e0\n[37315.799267] Call Trace:\n[37315.828515]  nvme_update_ns_info+0x1ac/0x250 [nvme_core]\n[37315.892075]  nvme_validate_or_alloc_ns+0x2ff/0xa00 [nvme_core]\n[37315.961871]  ? __blk_mq_free_request+0x6b/0x90\n[37316.015021]  nvme_scan_work+0x151/0x240 [nvme_core]\n[37316.073371]  process_one_work+0x1a7/0x360\n[37316.121318]  ? create_worker+0x1a0/0x1a0\n[37316.168227]  worker_thread+0x30/0x390\n[37316.212024]  ? create_worker+0x1a0/0x1a0\n[37316.258939]  kthread+0x10a/0x120\n[37316.297557]  ? set_kthread_struct+0x50/0x50\n[37316.347590]  ret_from_fork+0x35/0x40\n[37316.390360] Modules linked in: nvme_rdma nvme_tcp(X) nvme_fabrics nvme_core netconsole iscsi_tcp libiscsi_tcp dm_queue_length dm_service_time nf_conntrack_netlink br_netfilter bridge stp llc overlay nft_chain_nat ipt_MASQUERADE nf_nat xt_addrtype xt_CT nft_counter xt_state xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 xt_comment xt_multiport nft_compat nf_tables libcrc32c nfnetlink dm_multipath tg3 rpcrdma sunrpc rdma_ucm ib_srpt ib_isert iscsi_target_mod target_core_mod ib_iser libiscsi scsi_transport_iscsi ib_umad rdma_cm ib_ipoib iw_cm ib_cm intel_rapl_msr iTCO_wdt iTCO_vendor_support dcdbas intel_rapl_common sb_edac x86_pkg_temp_thermal intel_powerclamp coretemp kvm_intel ipmi_ssif kvm irqbypass crct10dif_pclmul crc32_pclmul mlx5_ib ghash_clmulni_intel ib_uverbs rapl intel_cstate intel_uncore ib_core ipmi_si joydev mei_me pcspkr ipmi_devintf mei lpc_ich wmi ipmi_msghandler acpi_power_meter ex\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49003",
          "url": "https://www.suse.com/security/cve/CVE-2022-49003"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232136 for CVE-2022-49003",
          "url": "https://bugzilla.suse.com/1232136"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232139 for CVE-2022-49003",
          "url": "https://bugzilla.suse.com/1232139"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-49003"
    },
    {
      "cve": "CVE-2022-49005",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49005"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: ops: Fix bounds check for _sx controls\n\nFor _sx controls the semantics of the max field is not the usual one, max\nis the number of steps rather than the maximum value. This means that our\ncheck in snd_soc_put_volsw_sx() needs to just check against the maximum\nvalue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49005",
          "url": "https://www.suse.com/security/cve/CVE-2022-49005"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232150 for CVE-2022-49005",
          "url": "https://bugzilla.suse.com/1232150"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49005"
    },
    {
      "cve": "CVE-2022-49006",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49006"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Free buffers when a used dynamic event is removed\n\nAfter 65536 dynamic events have been added and removed, the \"type\" field\nof the event then uses the first type number that is available (not\ncurrently used by other events). A type number is the identifier of the\nbinary blobs in the tracing ring buffer (known as events) to map them to\nlogic that can parse the binary blob.\n\nThe issue is that if a dynamic event (like a kprobe event) is traced and\nis in the ring buffer, and then that event is removed (because it is\ndynamic, which means it can be created and destroyed), if another dynamic\nevent is created that has the same number that new event\u0027s logic on\nparsing the binary blob will be used.\n\nTo show how this can be an issue, the following can crash the kernel:\n\n # cd /sys/kernel/tracing\n # for i in `seq 65536`; do\n     echo \u0027p:kprobes/foo do_sys_openat2 $arg1:u32\u0027 \u003e kprobe_events\n # done\n\nFor every iteration of the above, the writing to the kprobe_events will\nremove the old event and create a new one (with the same format) and\nincrease the type number to the next available on until the type number\nreaches over 65535 which is the max number for the 16 bit type. After it\nreaches that number, the logic to allocate a new number simply looks for\nthe next available number. When an dynamic event is removed, that number\nis then available to be reused by the next dynamic event created. That is,\nonce the above reaches the max number, the number assigned to the event in\nthat loop will remain the same.\n\nNow that means deleting one dynamic event and created another will reuse\nthe previous events type number. This is where bad things can happen.\nAfter the above loop finishes, the kprobes/foo event which reads the\ndo_sys_openat2 function call\u0027s first parameter as an integer.\n\n # echo 1 \u003e kprobes/foo/enable\n # cat /etc/passwd \u003e /dev/null\n # cat trace\n             cat-2211    [005] ....  2007.849603: foo: (do_sys_openat2+0x0/0x130) arg1=4294967196\n             cat-2211    [005] ....  2007.849620: foo: (do_sys_openat2+0x0/0x130) arg1=4294967196\n             cat-2211    [005] ....  2007.849838: foo: (do_sys_openat2+0x0/0x130) arg1=4294967196\n             cat-2211    [005] ....  2007.849880: foo: (do_sys_openat2+0x0/0x130) arg1=4294967196\n # echo 0 \u003e kprobes/foo/enable\n\nNow if we delete the kprobe and create a new one that reads a string:\n\n # echo \u0027p:kprobes/foo do_sys_openat2 +0($arg2):string\u0027 \u003e kprobe_events\n\nAnd now we can the trace:\n\n # cat trace\n        sendmail-1942    [002] .....   530.136320: foo: (do_sys_openat2+0x0/0x240) arg1=             cat-2046    [004] .....   530.930817: foo: (do_sys_openat2+0x0/0x240) arg1=\"\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\"\n             cat-2046    [004] .....   530.930961: foo: (do_sys_openat2+0x0/0x240) arg1=\"\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\"\n             cat-2046    [004] .....   530.934278: foo: (do_sys_openat2+0x0/0x240) arg1=\"\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\"\n             cat-2046    [004] .....   530.934563: foo: (do_sys_openat2+0x0/0x240) arg1=\"\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49006",
          "url": "https://www.suse.com/security/cve/CVE-2022-49006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232163 for CVE-2022-49006",
          "url": "https://bugzilla.suse.com/1232163"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-49006"
    },
    {
      "cve": "CVE-2022-49007",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49007"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix NULL pointer dereference in nilfs_palloc_commit_free_entry()\n\nSyzbot reported a null-ptr-deref bug:\n\n NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP\n frequency \u003c 30 seconds\n general protection fault, probably for non-canonical address\n 0xdffffc0000000002: 0000 [#1] PREEMPT SMP KASAN\n KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]\n CPU: 1 PID: 3603 Comm: segctord Not tainted\n 6.1.0-rc2-syzkaller-00105-gb229b6ca5abb #0\n Hardware name: Google Compute Engine/Google Compute Engine, BIOS Google\n 10/11/2022\n RIP: 0010:nilfs_palloc_commit_free_entry+0xe5/0x6b0\n fs/nilfs2/alloc.c:608\n Code: 00 00 00 00 fc ff df 80 3c 02 00 0f 85 cd 05 00 00 48 b8 00 00 00\n 00 00 fc ff df 4c 8b 73 08 49 8d 7e 10 48 89 fa 48 c1 ea 03 \u003c80\u003e 3c 02\n 00 0f 85 26 05 00 00 49 8b 46 10 be a6 00 00 00 48 c7 c7\n RSP: 0018:ffffc90003dff830 EFLAGS: 00010212\n RAX: dffffc0000000000 RBX: ffff88802594e218 RCX: 000000000000000d\n RDX: 0000000000000002 RSI: 0000000000002000 RDI: 0000000000000010\n RBP: ffff888071880222 R08: 0000000000000005 R09: 000000000000003f\n R10: 000000000000000d R11: 0000000000000000 R12: ffff888071880158\n R13: ffff88802594e220 R14: 0000000000000000 R15: 0000000000000004\n FS:  0000000000000000(0000) GS:ffff8880b9b00000(0000)\n knlGS:0000000000000000\n CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007fb1c08316a8 CR3: 0000000018560000 CR4: 0000000000350ee0\n Call Trace:\n  \u003cTASK\u003e\n  nilfs_dat_commit_free fs/nilfs2/dat.c:114 [inline]\n  nilfs_dat_commit_end+0x464/0x5f0 fs/nilfs2/dat.c:193\n  nilfs_dat_commit_update+0x26/0x40 fs/nilfs2/dat.c:236\n  nilfs_btree_commit_update_v+0x87/0x4a0 fs/nilfs2/btree.c:1940\n  nilfs_btree_commit_propagate_v fs/nilfs2/btree.c:2016 [inline]\n  nilfs_btree_propagate_v fs/nilfs2/btree.c:2046 [inline]\n  nilfs_btree_propagate+0xa00/0xd60 fs/nilfs2/btree.c:2088\n  nilfs_bmap_propagate+0x73/0x170 fs/nilfs2/bmap.c:337\n  nilfs_collect_file_data+0x45/0xd0 fs/nilfs2/segment.c:568\n  nilfs_segctor_apply_buffers+0x14a/0x470 fs/nilfs2/segment.c:1018\n  nilfs_segctor_scan_file+0x3f4/0x6f0 fs/nilfs2/segment.c:1067\n  nilfs_segctor_collect_blocks fs/nilfs2/segment.c:1197 [inline]\n  nilfs_segctor_collect fs/nilfs2/segment.c:1503 [inline]\n  nilfs_segctor_do_construct+0x12fc/0x6af0 fs/nilfs2/segment.c:2045\n  nilfs_segctor_construct+0x8e3/0xb30 fs/nilfs2/segment.c:2379\n  nilfs_segctor_thread_construct fs/nilfs2/segment.c:2487 [inline]\n  nilfs_segctor_thread+0x3c3/0xf30 fs/nilfs2/segment.c:2570\n  kthread+0x2e4/0x3a0 kernel/kthread.c:376\n  ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306\n  \u003c/TASK\u003e\n ...\n\nIf DAT metadata file is corrupted on disk, there is a case where\nreq-\u003epr_desc_bh is NULL and blocknr is 0 at nilfs_dat_commit_end() during\na b-tree operation that cascadingly updates ancestor nodes of the b-tree,\nbecause nilfs_dat_commit_alloc() for a lower level block can initialize\nthe blocknr on the same DAT entry between nilfs_dat_prepare_end() and\nnilfs_dat_commit_end().\n\nIf this happens, nilfs_dat_commit_end() calls nilfs_dat_commit_free()\nwithout valid buffer heads in req-\u003epr_desc_bh and req-\u003epr_bitmap_bh, and\ncauses the NULL pointer dereference above in\nnilfs_palloc_commit_free_entry() function, which leads to a crash.\n\nFix this by adding a NULL check on req-\u003epr_desc_bh and req-\u003epr_bitmap_bh\nbefore nilfs_palloc_commit_free_entry() in nilfs_dat_commit_free().\n\nThis also calls nilfs_error() in that case to notify that there is a fatal\nflaw in the filesystem metadata and prevent further operations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49007",
          "url": "https://www.suse.com/security/cve/CVE-2022-49007"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232170 for CVE-2022-49007",
          "url": "https://bugzilla.suse.com/1232170"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49007"
    },
    {
      "cve": "CVE-2022-49010",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49010"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (coretemp) Check for null before removing sysfs attrs\n\nIf coretemp_add_core() gets an error then pdata-\u003ecore_data[indx]\nis already NULL and has been kfreed. Don\u0027t pass that to\nsysfs_remove_group() as that will crash in sysfs_remove_group().\n\n[Shortened for readability]\n[91854.020159] sysfs: cannot create duplicate filename \u0027/devices/platform/coretemp.0/hwmon/hwmon2/temp20_label\u0027\n\u003ccpu offline\u003e\n[91855.126115] BUG: kernel NULL pointer dereference, address: 0000000000000188\n[91855.165103] #PF: supervisor read access in kernel mode\n[91855.194506] #PF: error_code(0x0000) - not-present page\n[91855.224445] PGD 0 P4D 0\n[91855.238508] Oops: 0000 [#1] PREEMPT SMP PTI\n...\n[91855.342716] RIP: 0010:sysfs_remove_group+0xc/0x80\n...\n[91855.796571] Call Trace:\n[91855.810524]  coretemp_cpu_offline+0x12b/0x1dd [coretemp]\n[91855.841738]  ? coretemp_cpu_online+0x180/0x180 [coretemp]\n[91855.871107]  cpuhp_invoke_callback+0x105/0x4b0\n[91855.893432]  cpuhp_thread_fun+0x8e/0x150\n...\n\nFix this by checking for NULL first.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49010",
          "url": "https://www.suse.com/security/cve/CVE-2022-49010"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232172 for CVE-2022-49010",
          "url": "https://bugzilla.suse.com/1232172"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49010"
    },
    {
      "cve": "CVE-2022-49011",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49011"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (coretemp) fix pci device refcount leak in nv1a_ram_new()\n\nAs comment of pci_get_domain_bus_and_slot() says, it returns\na pci device with refcount increment, when finish using it,\nthe caller must decrement the reference count by calling\npci_dev_put(). So call it after using to avoid refcount leak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49011",
          "url": "https://www.suse.com/security/cve/CVE-2022-49011"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232006 for CVE-2022-49011",
          "url": "https://bugzilla.suse.com/1232006"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49011"
    },
    {
      "cve": "CVE-2022-49012",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49012"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix server-\u003eactive leak in afs_put_server\n\nThe atomic_read was accidentally replaced with atomic_inc_return,\nwhich prevents the server from getting cleaned up and causes rmmod\nto hang with a warning:\n\n    Can\u0027t purge s=00000001",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49012",
          "url": "https://www.suse.com/security/cve/CVE-2022-49012"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232005 for CVE-2022-49012",
          "url": "https://bugzilla.suse.com/1232005"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49012"
    },
    {
      "cve": "CVE-2022-49014",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49014"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: tun: Fix use-after-free in tun_detach()\n\nsyzbot reported use-after-free in tun_detach() [1].  This causes call\ntrace like below:\n\n==================================================================\nBUG: KASAN: use-after-free in notifier_call_chain+0x1ee/0x200 kernel/notifier.c:75\nRead of size 8 at addr ffff88807324e2a8 by task syz-executor.0/3673\n\nCPU: 0 PID: 3673 Comm: syz-executor.0 Not tainted 6.1.0-rc5-syzkaller-00044-gcc675d22e422 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd1/0x138 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:284 [inline]\n print_report+0x15e/0x461 mm/kasan/report.c:395\n kasan_report+0xbf/0x1f0 mm/kasan/report.c:495\n notifier_call_chain+0x1ee/0x200 kernel/notifier.c:75\n call_netdevice_notifiers_info+0x86/0x130 net/core/dev.c:1942\n call_netdevice_notifiers_extack net/core/dev.c:1983 [inline]\n call_netdevice_notifiers net/core/dev.c:1997 [inline]\n netdev_wait_allrefs_any net/core/dev.c:10237 [inline]\n netdev_run_todo+0xbc6/0x1100 net/core/dev.c:10351\n tun_detach drivers/net/tun.c:704 [inline]\n tun_chr_close+0xe4/0x190 drivers/net/tun.c:3467\n __fput+0x27c/0xa90 fs/file_table.c:320\n task_work_run+0x16f/0x270 kernel/task_work.c:179\n exit_task_work include/linux/task_work.h:38 [inline]\n do_exit+0xb3d/0x2a30 kernel/exit.c:820\n do_group_exit+0xd4/0x2a0 kernel/exit.c:950\n get_signal+0x21b1/0x2440 kernel/signal.c:2858\n arch_do_signal_or_restart+0x86/0x2300 arch/x86/kernel/signal.c:869\n exit_to_user_mode_loop kernel/entry/common.c:168 [inline]\n exit_to_user_mode_prepare+0x15f/0x250 kernel/entry/common.c:203\n __syscall_exit_to_user_mode_work kernel/entry/common.c:285 [inline]\n syscall_exit_to_user_mode+0x1d/0x50 kernel/entry/common.c:296\n do_syscall_64+0x46/0xb0 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe cause of the issue is that sock_put() from __tun_detach() drops\nlast reference count for struct net, and then notifier_call_chain()\nfrom netdev_state_change() accesses that struct net.\n\nThis patch fixes the issue by calling sock_put() from tun_detach()\nafter all necessary accesses for the struct net has done.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49014",
          "url": "https://www.suse.com/security/cve/CVE-2022-49014"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231890 for CVE-2022-49014",
          "url": "https://bugzilla.suse.com/1231890"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232818 for CVE-2022-49014",
          "url": "https://bugzilla.suse.com/1232818"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-49014"
    },
    {
      "cve": "CVE-2022-49015",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49015"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hsr: Fix potential use-after-free\n\nThe skb is delivered to netif_rx() which may free it, after calling this,\ndereferencing skb may trigger use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49015",
          "url": "https://www.suse.com/security/cve/CVE-2022-49015"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231938 for CVE-2022-49015",
          "url": "https://bugzilla.suse.com/1231938"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1233021 for CVE-2022-49015",
          "url": "https://bugzilla.suse.com/1233021"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-49015"
    },
    {
      "cve": "CVE-2022-49016",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49016"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mdiobus: fix unbalanced node reference count\n\nI got the following report while doing device(mscc-miim) load test\nwith CONFIG_OF_UNITTEST and CONFIG_OF_DYNAMIC enabled:\n\n  OF: ERROR: memory leak, expected refcount 1 instead of 2,\n  of_node_get()/of_node_put() unbalanced - destroy cset entry:\n  attach overlay node /spi/soc@0/mdio@7107009c/ethernet-phy@0\n\nIf the \u0027fwnode\u0027 is not an acpi node, the refcount is get in\nfwnode_mdiobus_phy_device_register(), but it has never been\nput when the device is freed in the normal path. So call\nfwnode_handle_put() in phy_device_release() to avoid leak.\n\nIf it\u0027s an acpi node, it has never been get, but it\u0027s put\nin the error path, so call fwnode_handle_get() before\nphy_device_register() to keep get/put operation balanced.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49016",
          "url": "https://www.suse.com/security/cve/CVE-2022-49016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231937 for CVE-2022-49016",
          "url": "https://bugzilla.suse.com/1231937"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49016"
    },
    {
      "cve": "CVE-2022-49017",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49017"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: re-fetch skb cb after tipc_msg_validate\n\nAs the call trace shows, the original skb was freed in tipc_msg_validate(),\nand dereferencing the old skb cb would cause an use-after-free crash.\n\n  BUG: KASAN: use-after-free in tipc_crypto_rcv_complete+0x1835/0x2240 [tipc]\n  Call Trace:\n   \u003cIRQ\u003e\n   tipc_crypto_rcv_complete+0x1835/0x2240 [tipc]\n   tipc_crypto_rcv+0xd32/0x1ec0 [tipc]\n   tipc_rcv+0x744/0x1150 [tipc]\n  ...\n  Allocated by task 47078:\n   kmem_cache_alloc_node+0x158/0x4d0\n   __alloc_skb+0x1c1/0x270\n   tipc_buf_acquire+0x1e/0xe0 [tipc]\n   tipc_msg_create+0x33/0x1c0 [tipc]\n   tipc_link_build_proto_msg+0x38a/0x2100 [tipc]\n   tipc_link_timeout+0x8b8/0xef0 [tipc]\n   tipc_node_timeout+0x2a1/0x960 [tipc]\n   call_timer_fn+0x2d/0x1c0\n  ...\n  Freed by task 47078:\n   tipc_msg_validate+0x7b/0x440 [tipc]\n   tipc_crypto_rcv_complete+0x4b5/0x2240 [tipc]\n   tipc_crypto_rcv+0xd32/0x1ec0 [tipc]\n   tipc_rcv+0x744/0x1150 [tipc]\n\nThis patch fixes it by re-fetching the skb cb from the new allocated skb\nafter calling tipc_msg_validate().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49017",
          "url": "https://www.suse.com/security/cve/CVE-2022-49017"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232004 for CVE-2022-49017",
          "url": "https://bugzilla.suse.com/1232004"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49017"
    },
    {
      "cve": "CVE-2022-49019",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49019"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: nixge: fix NULL dereference\n\nIn function nixge_hw_dma_bd_release() dereference of NULL pointer\npriv-\u003erx_bd_v is possible for the case of its allocation failure in\nnixge_hw_dma_bd_init().\n\nMove for() loop with priv-\u003erx_bd_v dereference under the check for\nits validity.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49019",
          "url": "https://www.suse.com/security/cve/CVE-2022-49019"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231940 for CVE-2022-49019",
          "url": "https://bugzilla.suse.com/1231940"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49019"
    },
    {
      "cve": "CVE-2022-49020",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49020"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/9p: Fix a potential socket leak in p9_socket_open\n\nBoth p9_fd_create_tcp() and p9_fd_create_unix() will call\np9_socket_open(). If the creation of p9_trans_fd fails,\np9_fd_create_tcp() and p9_fd_create_unix() will return an\nerror directly instead of releasing the cscoket, which will\nresult in a socket leak.\n\nThis patch adds sock_release() to fix the leak issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49020",
          "url": "https://www.suse.com/security/cve/CVE-2022-49020"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232175 for CVE-2022-49020",
          "url": "https://bugzilla.suse.com/1232175"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-49020"
    },
    {
      "cve": "CVE-2022-49021",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49021"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: fix null-ptr-deref while probe() failed\n\nI got a null-ptr-deref report as following when doing fault injection test:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000058\nOops: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 1 PID: 253 Comm: 507-spi-dm9051 Tainted: G    B            N 6.1.0-rc3+\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.13.0-1ubuntu1.1 04/01/2014\nRIP: 0010:klist_put+0x2d/0xd0\nCall Trace:\n \u003cTASK\u003e\n klist_remove+0xf1/0x1c0\n device_release_driver_internal+0x23e/0x2d0\n bus_remove_device+0x1bd/0x240\n device_del+0x357/0x770\n phy_device_remove+0x11/0x30\n mdiobus_unregister+0xa5/0x140\n release_nodes+0x6a/0xa0\n devres_release_all+0xf8/0x150\n device_unbind_cleanup+0x19/0xd0\n\n//probe path:\nphy_device_register()\n  device_add()\n\nphy_connect\n  phy_attach_direct() //set device driver\n    probe() //it\u0027s failed, driver is not bound\n    device_bind_driver() // probe failed, it\u0027s not called\n\n//remove path:\nphy_device_remove()\n  device_del()\n    device_release_driver_internal()\n      __device_release_driver() //dev-\u003edrv is not NULL\n        klist_remove() \u003c- knode_driver is not added yet, cause null-ptr-deref\n\nIn phy_attach_direct(), after setting the \u0027dev-\u003edriver\u0027, probe() fails,\ndevice_bind_driver() is not called, so the knode_driver-\u003en_klist is not\nset, then it causes null-ptr-deref in __device_release_driver() while\ndeleting device. Fix this by setting dev-\u003edriver to NULL in the error\npath in phy_attach_direct().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49021",
          "url": "https://www.suse.com/security/cve/CVE-2022-49021"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231939 for CVE-2022-49021",
          "url": "https://bugzilla.suse.com/1231939"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49021"
    },
    {
      "cve": "CVE-2022-49022",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49022"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac8021: fix possible oob access in ieee80211_get_rate_duration\n\nFix possible out-of-bound access in ieee80211_get_rate_duration routine\nas reported by the following UBSAN report:\n\nUBSAN: array-index-out-of-bounds in net/mac80211/airtime.c:455:47\nindex 15 is out of range for type \u0027u16 [12]\u0027\nCPU: 2 PID: 217 Comm: kworker/u32:10 Not tainted 6.1.0-060100rc3-generic\nHardware name: Acer Aspire TC-281/Aspire TC-281, BIOS R01-A2 07/18/2017\nWorkqueue: mt76 mt76u_tx_status_data [mt76_usb]\nCall Trace:\n \u003cTASK\u003e\n show_stack+0x4e/0x61\n dump_stack_lvl+0x4a/0x6f\n dump_stack+0x10/0x18\n ubsan_epilogue+0x9/0x43\n __ubsan_handle_out_of_bounds.cold+0x42/0x47\nieee80211_get_rate_duration.constprop.0+0x22f/0x2a0 [mac80211]\n ? ieee80211_tx_status_ext+0x32e/0x640 [mac80211]\n ieee80211_calc_rx_airtime+0xda/0x120 [mac80211]\n ieee80211_calc_tx_airtime+0xb4/0x100 [mac80211]\n mt76x02_send_tx_status+0x266/0x480 [mt76x02_lib]\n mt76x02_tx_status_data+0x52/0x80 [mt76x02_lib]\n mt76u_tx_status_data+0x67/0xd0 [mt76_usb]\n process_one_work+0x225/0x400\n worker_thread+0x50/0x3e0\n ? process_one_work+0x400/0x400\n kthread+0xe9/0x110\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x22/0x30",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49022",
          "url": "https://www.suse.com/security/cve/CVE-2022-49022"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231962 for CVE-2022-49022",
          "url": "https://bugzilla.suse.com/1231962"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49022"
    },
    {
      "cve": "CVE-2022-49023",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49023"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: fix buffer overflow in elem comparison\n\nFor vendor elements, the code here assumes that 5 octets\nare present without checking. Since the element itself is\nalready checked to fit, we only need to check the length.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49023",
          "url": "https://www.suse.com/security/cve/CVE-2022-49023"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231961 for CVE-2022-49023",
          "url": "https://bugzilla.suse.com/1231961"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1233022 for CVE-2022-49023",
          "url": "https://bugzilla.suse.com/1233022"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-49023"
    },
    {
      "cve": "CVE-2022-49024",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49024"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: m_can: pci: add missing m_can_class_free_dev() in probe/remove methods\n\nIn m_can_pci_remove() and error handling path of m_can_pci_probe(),\nm_can_class_free_dev() should be called to free resource allocated by\nm_can_class_allocate_dev(), otherwise there will be memleak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49024",
          "url": "https://www.suse.com/security/cve/CVE-2022-49024"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232001 for CVE-2022-49024",
          "url": "https://bugzilla.suse.com/1232001"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49024"
    },
    {
      "cve": "CVE-2022-49025",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49025"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix use-after-free when reverting termination table\n\nWhen having multiple dests with termination tables and second one\nor afterwards fails the driver reverts usage of term tables but\ndoesn\u0027t reset the assignment in attr-\u003edests[num_vport_dests].termtbl\nwhich case a use-after-free when releasing the rule.\nFix by resetting the assignment of termtbl to null.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49025",
          "url": "https://www.suse.com/security/cve/CVE-2022-49025"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231960 for CVE-2022-49025",
          "url": "https://bugzilla.suse.com/1231960"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1233023 for CVE-2022-49025",
          "url": "https://bugzilla.suse.com/1233023"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-49025"
    },
    {
      "cve": "CVE-2022-49026",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49026"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ne100: Fix possible use after free in e100_xmit_prepare\n\nIn e100_xmit_prepare(), if we can\u0027t map the skb, then return -ENOMEM, so\ne100_xmit_frame() will return NETDEV_TX_BUSY and the upper layer will\nresend the skb. But the skb is already freed, which will cause UAF bug\nwhen the upper layer resends the skb.\n\nRemove the harmful free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49026",
          "url": "https://www.suse.com/security/cve/CVE-2022-49026"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231997 for CVE-2022-49026",
          "url": "https://bugzilla.suse.com/1231997"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49026"
    },
    {
      "cve": "CVE-2022-49027",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49027"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: Fix error handling in iavf_init_module()\n\nThe iavf_init_module() won\u0027t destroy workqueue when pci_register_driver()\nfailed. Call destroy_workqueue() when pci_register_driver() failed to\nprevent the resource leak.\n\nSimilar to the handling of u132_hcd_init in commit f276e002793c\n(\"usb: u132-hcd: fix resource leak\")",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49027",
          "url": "https://www.suse.com/security/cve/CVE-2022-49027"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232007 for CVE-2022-49027",
          "url": "https://bugzilla.suse.com/1232007"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49027"
    },
    {
      "cve": "CVE-2022-49028",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49028"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nixgbevf: Fix resource leak in ixgbevf_init_module()\n\nixgbevf_init_module() won\u0027t destroy the workqueue created by\ncreate_singlethread_workqueue() when pci_register_driver() failed. Add\ndestroy_workqueue() in fail path to prevent the resource leak.\n\nSimilar to the handling of u132_hcd_init in commit f276e002793c\n(\"usb: u132-hcd: fix resource leak\")",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49028",
          "url": "https://www.suse.com/security/cve/CVE-2022-49028"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231996 for CVE-2022-49028",
          "url": "https://bugzilla.suse.com/1231996"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49028"
    },
    {
      "cve": "CVE-2022-49029",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49029"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (ibmpex) Fix possible UAF when ibmpex_register_bmc() fails\n\nSmatch report warning as follows:\n\ndrivers/hwmon/ibmpex.c:509 ibmpex_register_bmc() warn:\n  \u0027\u0026data-\u003elist\u0027 not removed from list\n\nIf ibmpex_find_sensors() fails in ibmpex_register_bmc(), data will\nbe freed, but data-\u003elist will not be removed from driver_data.bmc_data,\nthen list traversal may cause UAF.\n\nFix by removeing it from driver_data.bmc_data before free().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49029",
          "url": "https://www.suse.com/security/cve/CVE-2022-49029"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231995 for CVE-2022-49029",
          "url": "https://bugzilla.suse.com/1231995"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49029"
    },
    {
      "cve": "CVE-2022-49031",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49031"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: health: afe4403: Fix oob read in afe4403_read_raw\n\nKASAN report out-of-bounds read as follows:\n\nBUG: KASAN: global-out-of-bounds in afe4403_read_raw+0x42e/0x4c0\nRead of size 4 at addr ffffffffc02ac638 by task cat/279\n\nCall Trace:\n afe4403_read_raw\n iio_read_channel_info\n dev_attr_show\n\nThe buggy address belongs to the variable:\n afe4403_channel_leds+0x18/0xffffffffffffe9e0\n\nThis issue can be reproduced by singe command:\n\n $ cat /sys/bus/spi/devices/spi0.0/iio\\:device0/in_intensity6_raw\n\nThe array size of afe4403_channel_leds is less than channels, so access\nwith chan-\u003eaddress cause OOB read in afe4403_read_raw. Fix it by moving\naccess before use it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49031",
          "url": "https://www.suse.com/security/cve/CVE-2022-49031"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231992 for CVE-2022-49031",
          "url": "https://bugzilla.suse.com/1231992"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49031"
    },
    {
      "cve": "CVE-2022-49032",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49032"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: health: afe4404: Fix oob read in afe4404_[read|write]_raw\n\nKASAN report out-of-bounds read as follows:\n\nBUG: KASAN: global-out-of-bounds in afe4404_read_raw+0x2ce/0x380\nRead of size 4 at addr ffffffffc00e4658 by task cat/278\n\nCall Trace:\n afe4404_read_raw\n iio_read_channel_info\n dev_attr_show\n\nThe buggy address belongs to the variable:\n afe4404_channel_leds+0x18/0xffffffffffffe9c0\n\nThis issue can be reproduce by singe command:\n\n $ cat /sys/bus/i2c/devices/0-0058/iio\\:device0/in_intensity6_raw\n\nThe array size of afe4404_channel_leds and afe4404_channel_offdacs\nare less than channels, so access with chan-\u003eaddress cause OOB read\nin afe4404_[read|write]_raw. Fix it by moving access before use them.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49032",
          "url": "https://www.suse.com/security/cve/CVE-2022-49032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231991 for CVE-2022-49032",
          "url": "https://bugzilla.suse.com/1231991"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49032"
    },
    {
      "cve": "CVE-2023-2166",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-2166"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A null pointer dereference issue was found in can protocol in net/can/af_can.c in the Linux before Linux. ml_priv may not be initialized in the receive path of CAN frames. A local user could use this flaw to crash the system or potentially cause a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-2166",
          "url": "https://www.suse.com/security/cve/CVE-2023-2166"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1210627 for CVE-2023-2166",
          "url": "https://bugzilla.suse.com/1210627"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-2166"
    },
    {
      "cve": "CVE-2023-28327",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-28327"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A NULL pointer dereference flaw was found in the UNIX protocol in net/unix/diag.c In unix_diag_get_exact in the Linux Kernel. The newly allocated skb does not have sk, leading to a NULL pointer. This flaw allows a local user to crash or potentially cause a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-28327",
          "url": "https://www.suse.com/security/cve/CVE-2023-28327"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209290 for CVE-2023-28327",
          "url": "https://bugzilla.suse.com/1209290"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-28327"
    },
    {
      "cve": "CVE-2023-52766",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52766"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: mipi-i3c-hci: Fix out of bounds access in hci_dma_irq_handler\n\nDo not loop over ring headers in hci_dma_irq_handler() that are not\nallocated and enabled in hci_dma_init(). Otherwise out of bounds access\nwill occur from rings-\u003eheaders[i] access when i \u003e= number of allocated\nring headers.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52766",
          "url": "https://www.suse.com/security/cve/CVE-2023-52766"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230620 for CVE-2023-52766",
          "url": "https://bugzilla.suse.com/1230620"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52766"
    },
    {
      "cve": "CVE-2023-52800",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52800"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix htt pktlog locking\n\nThe ath11k active pdevs are protected by RCU but the htt pktlog handling\ncode calling ath11k_mac_get_ar_by_pdev_id() was not marked as a\nread-side critical section.\n\nMark the code in question as an RCU read-side critical section to avoid\nany potential use-after-free issues.\n\nCompile tested only.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52800",
          "url": "https://www.suse.com/security/cve/CVE-2023-52800"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230600 for CVE-2023-52800",
          "url": "https://bugzilla.suse.com/1230600"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52800"
    },
    {
      "cve": "CVE-2023-52881",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52881"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: do not accept ACK of bytes we never sent\n\nThis patch is based on a detailed report and ideas from Yepeng Pan\nand Christian Rossow.\n\nACK seq validation is currently following RFC 5961 5.2 guidelines:\n\n   The ACK value is considered acceptable only if\n   it is in the range of ((SND.UNA - MAX.SND.WND) \u003c= SEG.ACK \u003c=\n   SND.NXT).  All incoming segments whose ACK value doesn\u0027t satisfy the\n   above condition MUST be discarded and an ACK sent back.  It needs to\n   be noted that RFC 793 on page 72 (fifth check) says: \"If the ACK is a\n   duplicate (SEG.ACK \u003c SND.UNA), it can be ignored.  If the ACK\n   acknowledges something not yet sent (SEG.ACK \u003e SND.NXT) then send an\n   ACK, drop the segment, and return\".  The \"ignored\" above implies that\n   the processing of the incoming data segment continues, which means\n   the ACK value is treated as acceptable.  This mitigation makes the\n   ACK check more stringent since any ACK \u003c SND.UNA wouldn\u0027t be\n   accepted, instead only ACKs that are in the range ((SND.UNA -\n   MAX.SND.WND) \u003c= SEG.ACK \u003c= SND.NXT) get through.\n\nThis can be refined for new (and possibly spoofed) flows,\nby not accepting ACK for bytes that were never sent.\n\nThis greatly improves TCP security at a little cost.\n\nI added a Fixes: tag to make sure this patch will reach stable trees,\neven if the \u0027blamed\u0027 patch was adhering to the RFC.\n\ntp-\u003ebytes_acked was added in linux-4.2\n\nFollowing packetdrill test (courtesy of Yepeng Pan) shows\nthe issue at hand:\n\n0 socket(..., SOCK_STREAM, IPPROTO_TCP) = 3\n+0 setsockopt(3, SOL_SOCKET, SO_REUSEADDR, [1], 4) = 0\n+0 bind(3, ..., ...) = 0\n+0 listen(3, 1024) = 0\n\n// ---------------- Handshake ------------------- //\n\n// when window scale is set to 14 the window size can be extended to\n// 65535 * (2^14) = 1073725440. Linux would accept an ACK packet\n// with ack number in (Server_ISN+1-1073725440. Server_ISN+1)\n// ,though this ack number acknowledges some data never\n// sent by the server.\n\n+0 \u003c S 0:0(0) win 65535 \u003cmss 1400,nop,wscale 14\u003e\n+0 \u003e S. 0:0(0) ack 1 \u003c...\u003e\n+0 \u003c . 1:1(0) ack 1 win 65535\n+0 accept(3, ..., ...) = 4\n\n// For the established connection, we send an ACK packet,\n// the ack packet uses ack number 1 - 1073725300 + 2^32,\n// where 2^32 is used to wrap around.\n// Note: we used 1073725300 instead of 1073725440 to avoid possible\n// edge cases.\n// 1 - 1073725300 + 2^32 = 3221241997\n\n// Oops, old kernels happily accept this packet.\n+0 \u003c . 1:1001(1000) ack 3221241997 win 65535\n\n// After the kernel fix the following will be replaced by a challenge ACK,\n// and prior malicious frame would be dropped.\n+0 \u003e . 1:1(0) ack 1001",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52881",
          "url": "https://www.suse.com/security/cve/CVE-2023-52881"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223384 for CVE-2023-52881",
          "url": "https://bugzilla.suse.com/1223384"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225611 for CVE-2023-52881",
          "url": "https://bugzilla.suse.com/1225611"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1226152 for CVE-2023-52881",
          "url": "https://bugzilla.suse.com/1226152"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52881"
    },
    {
      "cve": "CVE-2023-52919",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52919"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: nci: fix possible NULL pointer dereference in send_acknowledge()\n\nHandle memory allocation failure from nci_skb_alloc() (calling\nalloc_skb()) to avoid possible NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52919",
          "url": "https://www.suse.com/security/cve/CVE-2023-52919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231988 for CVE-2023-52919",
          "url": "https://bugzilla.suse.com/1231988"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52919"
    },
    {
      "cve": "CVE-2023-6270",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-6270"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on `struct net_device`, and a use-after-free can be triggered by racing between the free on the struct and the access through the `skbtxq` global queue. This could lead to a denial of service condition or potential code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-6270",
          "url": "https://www.suse.com/security/cve/CVE-2023-6270"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218562 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1218562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218813 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1218813"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221578 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1221578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221598 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1221598"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223016 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1223016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1227675 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1227675"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-6270"
    },
    {
      "cve": "CVE-2024-27043",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27043"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: edia: dvbdev: fix a use-after-free\n\nIn dvb_register_device, *pdvbdev is set equal to dvbdev, which is freed\nin several error-handling paths. However, *pdvbdev is not set to NULL\nafter dvbdev\u0027s deallocation, causing use-after-frees in many places,\nfor example, in the following call chain:\n\nbudget_register\n  |-\u003e dvb_dmxdev_init\n        |-\u003e dvb_register_device\n  |-\u003e dvb_dmxdev_release\n        |-\u003e dvb_unregister_device\n              |-\u003e dvb_remove_device\n                    |-\u003e dvb_device_put\n                          |-\u003e kref_put\n\nWhen calling dvb_unregister_device, dmxdev-\u003edvbdev (i.e. *pdvbdev in\ndvb_register_device) could point to memory that had been freed in\ndvb_register_device. Thereafter, this pointer is transferred to\nkref_put and triggering a use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27043",
          "url": "https://www.suse.com/security/cve/CVE-2024-27043"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218562 for CVE-2024-27043",
          "url": "https://bugzilla.suse.com/1218562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223824 for CVE-2024-27043",
          "url": "https://bugzilla.suse.com/1223824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223825 for CVE-2024-27043",
          "url": "https://bugzilla.suse.com/1223825"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-27043"
    },
    {
      "cve": "CVE-2024-36244",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-36244"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: taprio: extend minimum interval restriction to entire cycle too\n\nIt is possible for syzbot to side-step the restriction imposed by the\nblamed commit in the Fixes: tag, because the taprio UAPI permits a\ncycle-time different from (and potentially shorter than) the sum of\nentry intervals.\n\nWe need one more restriction, which is that the cycle time itself must\nbe larger than N * ETH_ZLEN bit times, where N is the number of schedule\nentries. This restriction needs to apply regardless of whether the cycle\ntime came from the user or was the implicit, auto-calculated value, so\nwe move the existing \"cycle == 0\" check outside the \"if \"(!new-\u003ecycle_time)\"\nbranch. This way covers both conditions and scenarios.\n\nAdd a selftest which illustrates the issue triggered by syzbot.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-36244",
          "url": "https://www.suse.com/security/cve/CVE-2024-36244"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1226797 for CVE-2024-36244",
          "url": "https://bugzilla.suse.com/1226797"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.8,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-36244"
    },
    {
      "cve": "CVE-2024-36957",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-36957"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-af: avoid off-by-one read from userspace\n\nWe try to access count + 1 byte from userspace with memdup_user(buffer,\ncount + 1). However, the userspace only provides buffer of count bytes and\nonly these count bytes are verified to be okay to access. To ensure the\ncopied buffer is NUL terminated, we use memdup_user_nul instead.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-36957",
          "url": "https://www.suse.com/security/cve/CVE-2024-36957"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225762 for CVE-2024-36957",
          "url": "https://bugzilla.suse.com/1225762"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-36957"
    },
    {
      "cve": "CVE-2024-39476",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-39476"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix deadlock that raid5d() wait for itself to clear MD_SB_CHANGE_PENDING\n\nXiao reported that lvm2 test lvconvert-raid-takeover.sh can hang with\nsmall possibility, the root cause is exactly the same as commit\nbed9e27baf52 (\"Revert \"md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d\"\")\n\nHowever, Dan reported another hang after that, and junxiao investigated\nthe problem and found out that this is caused by plugged bio can\u0027t issue\nfrom raid5d().\n\nCurrent implementation in raid5d() has a weird dependence:\n\n1) md_check_recovery() from raid5d() must hold \u0027reconfig_mutex\u0027 to clear\n   MD_SB_CHANGE_PENDING;\n2) raid5d() handles IO in a deadloop, until all IO are issued;\n3) IO from raid5d() must wait for MD_SB_CHANGE_PENDING to be cleared;\n\nThis behaviour is introduce before v2.6, and for consequence, if other\ncontext hold \u0027reconfig_mutex\u0027, and md_check_recovery() can\u0027t update\nsuper_block, then raid5d() will waste one cpu 100% by the deadloop, until\n\u0027reconfig_mutex\u0027 is released.\n\nRefer to the implementation from raid1 and raid10, fix this problem by\nskipping issue IO if MD_SB_CHANGE_PENDING is still set after\nmd_check_recovery(), daemon thread will be woken up when \u0027reconfig_mutex\u0027\nis released. Meanwhile, the hang problem will be fixed as well.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-39476",
          "url": "https://www.suse.com/security/cve/CVE-2024-39476"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1227437 for CVE-2024-39476",
          "url": "https://bugzilla.suse.com/1227437"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-39476"
    },
    {
      "cve": "CVE-2024-40965",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-40965"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: lpi2c: Avoid calling clk_get_rate during transfer\n\nInstead of repeatedly calling clk_get_rate for each transfer, lock\nthe clock rate and cache the value.\nA deadlock has been observed while adding tlv320aic32x4 audio codec to\nthe system. When this clock provider adds its clock, the clk mutex is\nlocked already, it needs to access i2c, which in return needs the mutex\nfor clk_get_rate as well.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-40965",
          "url": "https://www.suse.com/security/cve/CVE-2024-40965"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1227885 for CVE-2024-40965",
          "url": "https://bugzilla.suse.com/1227885"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-40965"
    },
    {
      "cve": "CVE-2024-42145",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-42145"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/core: Implement a limit on UMAD receive List\n\nThe existing behavior of ib_umad, which maintains received MAD\npackets in an unbounded list, poses a risk of uncontrolled growth.\nAs user-space applications extract packets from this list, the rate\nof extraction may not match the rate of incoming packets, leading\nto potential list overflow.\n\nTo address this, we introduce a limit to the size of the list. After\nconsidering typical scenarios, such as OpenSM processing, which can\nhandle approximately 100k packets per second, and the 1-second retry\ntimeout for most packets, we set the list size limit to 200k. Packets\nreceived beyond this limit are dropped, assuming they are likely timed\nout by the time they are handled by user-space.\n\nNotably, packets queued on the receive list due to reasons like\ntimed-out sends are preserved even when the list is full.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-42145",
          "url": "https://www.suse.com/security/cve/CVE-2024-42145"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223384 for CVE-2024-42145",
          "url": "https://bugzilla.suse.com/1223384"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1228743 for CVE-2024-42145",
          "url": "https://bugzilla.suse.com/1228743"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1228744 for CVE-2024-42145",
          "url": "https://bugzilla.suse.com/1228744"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-42145"
    },
    {
      "cve": "CVE-2024-42226",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-42226"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-42226",
          "url": "https://www.suse.com/security/cve/CVE-2024-42226"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1228709 for CVE-2024-42226",
          "url": "https://bugzilla.suse.com/1228709"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-42226"
    },
    {
      "cve": "CVE-2024-42253",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-42253"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: pca953x: fix pca953x_irq_bus_sync_unlock race\n\nEnsure that `i2c_lock\u0027 is held when setting interrupt latch and mask in\npca953x_irq_bus_sync_unlock() in order to avoid races.\n\nThe other (non-probe) call site pca953x_gpio_set_multiple() ensures the\nlock is held before calling pca953x_write_regs().\n\nThe problem occurred when a request raced against irq_bus_sync_unlock()\napproximately once per thousand reboots on an i.MX8MP based system.\n\n * Normal case\n\n   0-0022: write register AI|3a {03,02,00,00,01} Input latch P0\n   0-0022: write register AI|49 {fc,fd,ff,ff,fe} Interrupt mask P0\n   0-0022: write register AI|08 {ff,00,00,00,00} Output P3\n   0-0022: write register AI|12 {fc,00,00,00,00} Config P3\n\n * Race case\n\n   0-0022: write register AI|08 {ff,00,00,00,00} Output P3\n   0-0022: write register AI|08 {03,02,00,00,01} *** Wrong register ***\n   0-0022: write register AI|12 {fc,00,00,00,00} Config P3\n   0-0022: write register AI|49 {fc,fd,ff,ff,fe} Interrupt mask P0",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-42253",
          "url": "https://www.suse.com/security/cve/CVE-2024-42253"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1229005 for CVE-2024-42253",
          "url": "https://bugzilla.suse.com/1229005"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-42253"
    },
    {
      "cve": "CVE-2024-44931",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-44931"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: prevent potential speculation leaks in gpio_device_get_desc()\n\nUserspace may trigger a speculative read of an address outside the gpio\ndescriptor array.\nUsers can do that by calling gpio_ioctl() with an offset out of range.\nOffset is copied from user and then used as an array index to get\nthe gpio descriptor without sanitization in gpio_device_get_desc().\n\nThis change ensures that the offset is sanitized by using\narray_index_nospec() to mitigate any possibility of speculative\ninformation leaks.\n\nThis bug was discovered and resolved using Coverity Static Analysis\nSecurity Testing (SAST) by Synopsys, Inc.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-44931",
          "url": "https://www.suse.com/security/cve/CVE-2024-44931"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1229837 for CVE-2024-44931",
          "url": "https://bugzilla.suse.com/1229837"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-44931"
    },
    {
      "cve": "CVE-2024-44947",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-44947"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: Initialize beyond-EOF page contents before setting uptodate\n\nfuse_notify_store(), unlike fuse_do_readpage(), does not enable page\nzeroing (because it can be used to change partial page contents).\n\nSo fuse_notify_store() must be more careful to fully initialize page\ncontents (including parts of the page that are beyond end-of-file)\nbefore marking the page uptodate.\n\nThe current code can leave beyond-EOF page contents uninitialized, which\nmakes these uninitialized page contents visible to userspace via mmap().\n\nThis is an information leak, but only affects systems which do not\nenable init-on-alloc (via CONFIG_INIT_ON_ALLOC_DEFAULT_ON=y or the\ncorresponding kernel command line parameter).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-44947",
          "url": "https://www.suse.com/security/cve/CVE-2024-44947"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1229456 for CVE-2024-44947",
          "url": "https://bugzilla.suse.com/1229456"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230098 for CVE-2024-44947",
          "url": "https://bugzilla.suse.com/1230098"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-44947"
    },
    {
      "cve": "CVE-2024-44958",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-44958"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/smt: Fix unbalance sched_smt_present dec/inc\n\nI got the following warn report while doing stress test:\n\njump label: negative count!\nWARNING: CPU: 3 PID: 38 at kernel/jump_label.c:263 static_key_slow_try_dec+0x9d/0xb0\nCall Trace:\n \u003cTASK\u003e\n __static_key_slow_dec_cpuslocked+0x16/0x70\n sched_cpu_deactivate+0x26e/0x2a0\n cpuhp_invoke_callback+0x3ad/0x10d0\n cpuhp_thread_fun+0x3f5/0x680\n smpboot_thread_fn+0x56d/0x8d0\n kthread+0x309/0x400\n ret_from_fork+0x41/0x70\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nBecause when cpuset_cpu_inactive() fails in sched_cpu_deactivate(),\nthe cpu offline failed, but sched_smt_present is decremented before\ncalling sched_cpu_deactivate(), it leads to unbalanced dec/inc, so\nfix it by incrementing sched_smt_present in the error path.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-44958",
          "url": "https://www.suse.com/security/cve/CVE-2024-44958"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230179 for CVE-2024-44958",
          "url": "https://bugzilla.suse.com/1230179"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-44958"
    },
    {
      "cve": "CVE-2024-45016",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-45016"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetem: fix return value if duplicate enqueue fails\n\nThere is a bug in netem_enqueue() introduced by\ncommit 5845f706388a (\"net: netem: fix skb length BUG_ON in __skb_to_sgvec\")\nthat can lead to a use-after-free.\n\nThis commit made netem_enqueue() always return NET_XMIT_SUCCESS\nwhen a packet is duplicated, which can cause the parent qdisc\u0027s q.qlen\nto be mistakenly incremented. When this happens qlen_notify() may be\nskipped on the parent during destruction, leaving a dangling pointer\nfor some classful qdiscs like DRR.\n\nThere are two ways for the bug happen:\n\n- If the duplicated packet is dropped by rootq-\u003eenqueue() and then\n  the original packet is also dropped.\n- If rootq-\u003eenqueue() sends the duplicated packet to a different qdisc\n  and the original packet is dropped.\n\nIn both cases NET_XMIT_SUCCESS is returned even though no packets\nare enqueued at the netem qdisc.\n\nThe fix is to defer the enqueue of the duplicate packet until after\nthe original packet has been guaranteed to return NET_XMIT_SUCCESS.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-45016",
          "url": "https://www.suse.com/security/cve/CVE-2024-45016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230429 for CVE-2024-45016",
          "url": "https://bugzilla.suse.com/1230429"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230998 for CVE-2024-45016",
          "url": "https://bugzilla.suse.com/1230998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-45016"
    },
    {
      "cve": "CVE-2024-45025",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-45025"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE\n\ncopy_fd_bitmaps(new, old, count) is expected to copy the first\ncount/BITS_PER_LONG bits from old-\u003efull_fds_bits[] and fill\nthe rest with zeroes.  What it does is copying enough words\n(BITS_TO_LONGS(count/BITS_PER_LONG)), then memsets the rest.\nThat works fine, *if* all bits past the cutoff point are\nclear.  Otherwise we are risking garbage from the last word\nwe\u0027d copied.\n\nFor most of the callers that is true - expand_fdtable() has\ncount equal to old-\u003emax_fds, so there\u0027s no open descriptors\npast count, let alone fully occupied words in -\u003eopen_fds[],\nwhich is what bits in -\u003efull_fds_bits[] correspond to.\n\nThe other caller (dup_fd()) passes sane_fdtable_size(old_fdt, max_fds),\nwhich is the smallest multiple of BITS_PER_LONG that covers all\nopened descriptors below max_fds.  In the common case (copying on\nfork()) max_fds is ~0U, so all opened descriptors will be below\nit and we are fine, by the same reasons why the call in expand_fdtable()\nis safe.\n\nUnfortunately, there is a case where max_fds is less than that\nand where we might, indeed, end up with junk in -\u003efull_fds_bits[] -\nclose_range(from, to, CLOSE_RANGE_UNSHARE) with\n\t* descriptor table being currently shared\n\t* \u0027to\u0027 being above the current capacity of descriptor table\n\t* \u0027from\u0027 being just under some chunk of opened descriptors.\nIn that case we end up with observably wrong behaviour - e.g. spawn\na child with CLONE_FILES, get all descriptors in range 0..127 open,\nthen close_range(64, ~0U, CLOSE_RANGE_UNSHARE) and watch dup(0) ending\nup with descriptor #128, despite #64 being observably not open.\n\nThe minimally invasive fix would be to deal with that in dup_fd().\nIf this proves to add measurable overhead, we can go that way, but\nlet\u0027s try to fix copy_fd_bitmaps() first.\n\n* new helper: bitmap_copy_and_expand(to, from, bits_to_copy, size).\n* make copy_fd_bitmaps() take the bitmap size in words, rather than\nbits; it\u0027s \u0027count\u0027 argument is always a multiple of BITS_PER_LONG,\nso we are not losing any information, and that way we can use the\nsame helper for all three bitmaps - compiler will see that count\nis a multiple of BITS_PER_LONG for the large ones, so it\u0027ll generate\nplain memcpy()+memset().\n\nReproducer added to tools/testing/selftests/core/close_range_test.c",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-45025",
          "url": "https://www.suse.com/security/cve/CVE-2024-45025"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230456 for CVE-2024-45025",
          "url": "https://bugzilla.suse.com/1230456"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-45025"
    },
    {
      "cve": "CVE-2024-46716",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46716"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor\n\nRemove list_del call in msgdma_chan_desc_cleanup, this should be the role\nof msgdma_free_descriptor. In consequence replace list_add_tail with\nlist_move_tail in msgdma_free_descriptor.\n\nThis fixes the path:\n   msgdma_free_chan_resources -\u003e msgdma_free_descriptors -\u003e\n   msgdma_free_desc_list -\u003e msgdma_free_descriptor\n\nwhich does not correctly free the descriptors as first nodes were not\nremoved from the list.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46716",
          "url": "https://www.suse.com/security/cve/CVE-2024-46716"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230715 for CVE-2024-46716",
          "url": "https://bugzilla.suse.com/1230715"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-46716"
    },
    {
      "cve": "CVE-2024-46719",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46719"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Fix null pointer dereference in trace\n\nucsi_register_altmode checks IS_ERR for the alt pointer and treats\nNULL as valid. When CONFIG_TYPEC_DP_ALTMODE is not enabled,\nucsi_register_displayport returns NULL which causes a NULL pointer\ndereference in trace. Rather than return NULL, call\ntypec_port_register_altmode to register DisplayPort alternate mode\nas a non-controllable mode when CONFIG_TYPEC_DP_ALTMODE is not enabled.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46719",
          "url": "https://www.suse.com/security/cve/CVE-2024-46719"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230722 for CVE-2024-46719",
          "url": "https://bugzilla.suse.com/1230722"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46719"
    },
    {
      "cve": "CVE-2024-46754",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46754"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Remove tst_run from lwt_seg6local_prog_ops.\n\nThe syzbot reported that the lwt_seg6 related BPF ops can be invoked\nvia bpf_test_run() without without entering input_action_end_bpf()\nfirst.\n\nMartin KaFai Lau said that self test for BPF_PROG_TYPE_LWT_SEG6LOCAL\nprobably didn\u0027t work since it was introduced in commit 04d4b274e2a\n(\"ipv6: sr: Add seg6local action End.BPF\"). The reason is that the\nper-CPU variable seg6_bpf_srh_states::srh is never assigned in the self\ntest case but each BPF function expects it.\n\nRemove test_run for BPF_PROG_TYPE_LWT_SEG6LOCAL.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46754",
          "url": "https://www.suse.com/security/cve/CVE-2024-46754"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230801 for CVE-2024-46754",
          "url": "https://bugzilla.suse.com/1230801"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46754"
    },
    {
      "cve": "CVE-2024-46777",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46777"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Avoid excessive partition lengths\n\nAvoid mounting filesystems where the partition would overflow the\n32-bits used for block number. Also refuse to mount filesystems where\nthe partition length is so large we cannot safely index bits in a\nblock bitmap.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46777",
          "url": "https://www.suse.com/security/cve/CVE-2024-46777"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230773 for CVE-2024-46777",
          "url": "https://bugzilla.suse.com/1230773"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46777"
    },
    {
      "cve": "CVE-2024-46809",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46809"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check BIOS images before it is used\n\nBIOS images may fail to load and null checks are added before they are\nused.\n\nThis fixes 6 NULL_RETURNS issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46809",
          "url": "https://www.suse.com/security/cve/CVE-2024-46809"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231148 for CVE-2024-46809",
          "url": "https://bugzilla.suse.com/1231148"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46809"
    },
    {
      "cve": "CVE-2024-46811",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46811"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box\n\n[Why]\nCoverity reports OVERRUN warning. soc.num_states could\nbe 40. But array range of bw_params-\u003eclk_table.entries is 8.\n\n[How]\nAssert if soc.num_states greater than 8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46811",
          "url": "https://www.suse.com/security/cve/CVE-2024-46811"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231179 for CVE-2024-46811",
          "url": "https://bugzilla.suse.com/1231179"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46811"
    },
    {
      "cve": "CVE-2024-46813",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46813"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check link_index before accessing dc-\u003elinks[]\n\n[WHY \u0026 HOW]\ndc-\u003elinks[] has max size of MAX_LINKS and NULL is return when trying to\naccess with out-of-bound index.\n\nThis fixes 3 OVERRUN and 1 RESOURCE_LEAK issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46813",
          "url": "https://www.suse.com/security/cve/CVE-2024-46813"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231191 for CVE-2024-46813",
          "url": "https://bugzilla.suse.com/1231191"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231192 for CVE-2024-46813",
          "url": "https://bugzilla.suse.com/1231192"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-46813"
    },
    {
      "cve": "CVE-2024-46814",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46814"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check msg_id before processing transcation\n\n[WHY \u0026 HOW]\nHDCP_MESSAGE_ID_INVALID (-1) is not a valid msg_id nor is it a valid\narray index, and it needs checking before used.\n\nThis fixes 4 OVERRUN issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46814",
          "url": "https://www.suse.com/security/cve/CVE-2024-46814"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231193 for CVE-2024-46814",
          "url": "https://bugzilla.suse.com/1231193"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231194 for CVE-2024-46814",
          "url": "https://bugzilla.suse.com/1231194"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-46814"
    },
    {
      "cve": "CVE-2024-46815",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46815"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check num_valid_sets before accessing reader_wm_sets[]\n\n[WHY \u0026 HOW]\nnum_valid_sets needs to be checked to avoid a negative index when\naccessing reader_wm_sets[num_valid_sets - 1].\n\nThis fixes an OVERRUN issue reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46815",
          "url": "https://www.suse.com/security/cve/CVE-2024-46815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231195 for CVE-2024-46815",
          "url": "https://bugzilla.suse.com/1231195"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231196 for CVE-2024-46815",
          "url": "https://bugzilla.suse.com/1231196"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-46815"
    },
    {
      "cve": "CVE-2024-46816",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46816"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links\n\n[Why]\nCoverity report OVERRUN warning. There are\nonly max_links elements within dc-\u003elinks. link\ncount could up to AMDGPU_DM_MAX_DISPLAY_INDEX 31.\n\n[How]\nMake sure link count less than max_links.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46816",
          "url": "https://www.suse.com/security/cve/CVE-2024-46816"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231197 for CVE-2024-46816",
          "url": "https://bugzilla.suse.com/1231197"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231198 for CVE-2024-46816",
          "url": "https://bugzilla.suse.com/1231198"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-46816"
    },
    {
      "cve": "CVE-2024-46817",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46817"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6\n\n[Why]\nCoverity reports OVERRUN warning. Should abort amdgpu_dm\ninitialize.\n\n[How]\nReturn failure to amdgpu_dm_init.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46817",
          "url": "https://www.suse.com/security/cve/CVE-2024-46817"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231200 for CVE-2024-46817",
          "url": "https://bugzilla.suse.com/1231200"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231201 for CVE-2024-46817",
          "url": "https://bugzilla.suse.com/1231201"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-46817"
    },
    {
      "cve": "CVE-2024-46818",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46818"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check gpio_id before used as array index\n\n[WHY \u0026 HOW]\nGPIO_ID_UNKNOWN (-1) is not a valid value for array index and therefore\nshould be checked in advance.\n\nThis fixes 5 OVERRUN issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46818",
          "url": "https://www.suse.com/security/cve/CVE-2024-46818"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231203 for CVE-2024-46818",
          "url": "https://bugzilla.suse.com/1231203"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231204 for CVE-2024-46818",
          "url": "https://bugzilla.suse.com/1231204"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-46818"
    },
    {
      "cve": "CVE-2024-46828",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46828"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched: sch_cake: fix bulk flow accounting logic for host fairness\n\nIn sch_cake, we keep track of the count of active bulk flows per host,\nwhen running in dst/src host fairness mode, which is used as the\nround-robin weight when iterating through flows. The count of active\nbulk flows is updated whenever a flow changes state.\n\nThis has a peculiar interaction with the hash collision handling: when a\nhash collision occurs (after the set-associative hashing), the state of\nthe hash bucket is simply updated to match the new packet that collided,\nand if host fairness is enabled, that also means assigning new per-host\nstate to the flow. For this reason, the bulk flow counters of the\nhost(s) assigned to the flow are decremented, before new state is\nassigned (and the counters, which may not belong to the same host\nanymore, are incremented again).\n\nBack when this code was introduced, the host fairness mode was always\nenabled, so the decrement was unconditional. When the configuration\nflags were introduced the *increment* was made conditional, but\nthe *decrement* was not. Which of course can lead to a spurious\ndecrement (and associated wrap-around to U16_MAX).\n\nAFAICT, when host fairness is disabled, the decrement and wrap-around\nhappens as soon as a hash collision occurs (which is not that common in\nitself, due to the set-associative hashing). However, in most cases this\nis harmless, as the value is only used when host fairness mode is\nenabled. So in order to trigger an array overflow, sch_cake has to first\nbe configured with host fairness disabled, and while running in this\nmode, a hash collision has to occur to cause the overflow. Then, the\nqdisc has to be reconfigured to enable host fairness, which leads to the\narray out-of-bounds because the wrapped-around value is retained and\nused as an array index. It seems that syzbot managed to trigger this,\nwhich is quite impressive in its own right.\n\nThis patch fixes the issue by introducing the same conditional check on\ndecrement as is used on increment.\n\nThe original bug predates the upstreaming of cake, but the commit listed\nin the Fixes tag touched that code, meaning that this patch won\u0027t apply\nbefore that.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46828",
          "url": "https://www.suse.com/security/cve/CVE-2024-46828"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231114 for CVE-2024-46828",
          "url": "https://bugzilla.suse.com/1231114"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46828"
    },
    {
      "cve": "CVE-2024-46834",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46834"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: fail closed if we can\u0027t get max channel used in indirection tables\n\nCommit 0d1b7d6c9274 (\"bnxt: fix crashes when reducing ring count with\nactive RSS contexts\") proves that allowing indirection table to contain\nchannels with out of bounds IDs may lead to crashes. Currently the\nmax channel check in the core gets skipped if driver can\u0027t fetch\nthe indirection table or when we can\u0027t allocate memory.\n\nBoth of those conditions should be extremely rare but if they do\nhappen we should try to be safe and fail the channel change.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46834",
          "url": "https://www.suse.com/security/cve/CVE-2024-46834"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231096 for CVE-2024-46834",
          "url": "https://bugzilla.suse.com/1231096"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46834"
    },
    {
      "cve": "CVE-2024-46840",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46840"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: clean up our handling of refs == 0 in snapshot delete\n\nIn reada we BUG_ON(refs == 0), which could be unkind since we aren\u0027t\nholding a lock on the extent leaf and thus could get a transient\nincorrect answer.  In walk_down_proc we also BUG_ON(refs == 0), which\ncould happen if we have extent tree corruption.  Change that to return\n-EUCLEAN.  In do_walk_down() we catch this case and handle it correctly,\nhowever we return -EIO, which -EUCLEAN is a more appropriate error code.\nFinally in walk_up_proc we have the same BUG_ON(refs == 0), so convert\nthat to proper error handling.  Also adjust the error message so we can\nactually do something with the information.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46840",
          "url": "https://www.suse.com/security/cve/CVE-2024-46840"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231105 for CVE-2024-46840",
          "url": "https://bugzilla.suse.com/1231105"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46840"
    },
    {
      "cve": "CVE-2024-46841",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46841"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc()\n\nWe handle errors here properly, ENOMEM isn\u0027t fatal, return the error.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46841",
          "url": "https://www.suse.com/security/cve/CVE-2024-46841"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231094 for CVE-2024-46841",
          "url": "https://bugzilla.suse.com/1231094"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46841"
    },
    {
      "cve": "CVE-2024-46848",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46848"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/intel: Limit the period on Haswell\n\nRunning the ltp test cve-2015-3290 concurrently reports the following\nwarnings.\n\nperfevents: irq loop stuck!\n  WARNING: CPU: 31 PID: 32438 at arch/x86/events/intel/core.c:3174\n  intel_pmu_handle_irq+0x285/0x370\n  Call Trace:\n   \u003cNMI\u003e\n   ? __warn+0xa4/0x220\n   ? intel_pmu_handle_irq+0x285/0x370\n   ? __report_bug+0x123/0x130\n   ? intel_pmu_handle_irq+0x285/0x370\n   ? __report_bug+0x123/0x130\n   ? intel_pmu_handle_irq+0x285/0x370\n   ? report_bug+0x3e/0xa0\n   ? handle_bug+0x3c/0x70\n   ? exc_invalid_op+0x18/0x50\n   ? asm_exc_invalid_op+0x1a/0x20\n   ? irq_work_claim+0x1e/0x40\n   ? intel_pmu_handle_irq+0x285/0x370\n   perf_event_nmi_handler+0x3d/0x60\n   nmi_handle+0x104/0x330\n\nThanks to Thomas Gleixner\u0027s analysis, the issue is caused by the low\ninitial period (1) of the frequency estimation algorithm, which triggers\nthe defects of the HW, specifically erratum HSW11 and HSW143. (For the\ndetails, please refer https://lore.kernel.org/lkml/87plq9l5d2.ffs@tglx/)\n\nThe HSW11 requires a period larger than 100 for the INST_RETIRED.ALL\nevent, but the initial period in the freq mode is 1. The erratum is the\nsame as the BDM11, which has been supported in the kernel. A minimum\nperiod of 128 is enforced as well on HSW.\n\nHSW143 is regarding that the fixed counter 1 may overcount 32 with the\nHyper-Threading is enabled. However, based on the test, the hardware\nhas more issues than it tells. Besides the fixed counter 1, the message\n\u0027interrupt took too long\u0027 can be observed on any counter which was armed\nwith a period \u003c 32 and two events expired in the same NMI. A minimum\nperiod of 32 is enforced for the rest of the events.\nThe recommended workaround code of the HSW143 is not implemented.\nBecause it only addresses the issue for the fixed counter. It brings\nextra overhead through extra MSR writing. No related overcounting issue\nhas been reported so far.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46848",
          "url": "https://www.suse.com/security/cve/CVE-2024-46848"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231072 for CVE-2024-46848",
          "url": "https://bugzilla.suse.com/1231072"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46848"
    },
    {
      "cve": "CVE-2024-46849",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46849"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: meson: axg-card: fix \u0027use-after-free\u0027\n\nBuffer \u0027card-\u003edai_link\u0027 is reallocated in \u0027meson_card_reallocate_links()\u0027,\nso move \u0027pad\u0027 pointer initialization after this function when memory is\nalready reallocated.\n\nKasan bug report:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in axg_card_add_link+0x76c/0x9bc\nRead of size 8 at addr ffff000000e8b260 by task modprobe/356\n\nCPU: 0 PID: 356 Comm: modprobe Tainted: G O 6.9.12-sdkernel #1\nCall trace:\n dump_backtrace+0x94/0xec\n show_stack+0x18/0x24\n dump_stack_lvl+0x78/0x90\n print_report+0xfc/0x5c0\n kasan_report+0xb8/0xfc\n __asan_load8+0x9c/0xb8\n axg_card_add_link+0x76c/0x9bc [snd_soc_meson_axg_sound_card]\n meson_card_probe+0x344/0x3b8 [snd_soc_meson_card_utils]\n platform_probe+0x8c/0xf4\n really_probe+0x110/0x39c\n __driver_probe_device+0xb8/0x18c\n driver_probe_device+0x108/0x1d8\n __driver_attach+0xd0/0x25c\n bus_for_each_dev+0xe0/0x154\n driver_attach+0x34/0x44\n bus_add_driver+0x134/0x294\n driver_register+0xa8/0x1e8\n __platform_driver_register+0x44/0x54\n axg_card_pdrv_init+0x20/0x1000 [snd_soc_meson_axg_sound_card]\n do_one_initcall+0xdc/0x25c\n do_init_module+0x10c/0x334\n load_module+0x24c4/0x26cc\n init_module_from_file+0xd4/0x128\n __arm64_sys_finit_module+0x1f4/0x41c\n invoke_syscall+0x60/0x188\n el0_svc_common.constprop.0+0x78/0x13c\n do_el0_svc+0x30/0x40\n el0_svc+0x38/0x78\n el0t_64_sync_handler+0x100/0x12c\n el0t_64_sync+0x190/0x194",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46849",
          "url": "https://www.suse.com/security/cve/CVE-2024-46849"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231073 for CVE-2024-46849",
          "url": "https://bugzilla.suse.com/1231073"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231256 for CVE-2024-46849",
          "url": "https://bugzilla.suse.com/1231256"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46849"
    },
    {
      "cve": "CVE-2024-47660",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47660"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsnotify: clear PARENT_WATCHED flags lazily\n\nIn some setups directories can have many (usually negative) dentries.\nHence __fsnotify_update_child_dentry_flags() function can take a\nsignificant amount of time. Since the bulk of this function happens\nunder inode-\u003ei_lock this causes a significant contention on the lock\nwhen we remove the watch from the directory as the\n__fsnotify_update_child_dentry_flags() call from fsnotify_recalc_mask()\nraces with __fsnotify_update_child_dentry_flags() calls from\n__fsnotify_parent() happening on children. This can lead upto softlockup\nreports reported by users.\n\nFix the problem by calling fsnotify_update_children_dentry_flags() to\nset PARENT_WATCHED flags only when parent starts watching children.\n\nWhen parent stops watching children, clear false positive PARENT_WATCHED\nflags lazily in __fsnotify_parent() for each accessed child.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47660",
          "url": "https://www.suse.com/security/cve/CVE-2024-47660"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231439 for CVE-2024-47660",
          "url": "https://bugzilla.suse.com/1231439"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.5,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-47660"
    },
    {
      "cve": "CVE-2024-47661",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47661"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Avoid overflow from uint32_t to uint8_t\n\n[WHAT \u0026 HOW]\ndmub_rb_cmd\u0027s ramping_boundary has size of uint8_t and it is assigned\n0xFFFF. Fix it by changing it to uint8_t with value of 0xFF.\n\nThis fixes 2 INTEGER_OVERFLOW issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47661",
          "url": "https://www.suse.com/security/cve/CVE-2024-47661"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231496 for CVE-2024-47661",
          "url": "https://bugzilla.suse.com/1231496"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 0,
            "baseSeverity": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-47661"
    },
    {
      "cve": "CVE-2024-47664",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47664"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware\n\nIf the value of max_speed_hz is 0, it may cause a division by zero\nerror in hisi_calc_effective_speed().\nThe value of max_speed_hz is provided by firmware.\nFirmware is generally considered as a trusted domain. However, as\ndivision by zero errors can cause system failure, for defense measure,\nthe value of max_speed is validated here. So 0 is regarded as invalid\nand an error code is returned.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47664",
          "url": "https://www.suse.com/security/cve/CVE-2024-47664"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231442 for CVE-2024-47664",
          "url": "https://bugzilla.suse.com/1231442"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47664"
    },
    {
      "cve": "CVE-2024-47668",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47668"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc()\n\nIf we need to increase the tree depth, allocate a new node, and then\nrace with another thread that increased the tree depth before us, we\u0027ll\nstill have a preallocated node that might be used later.\n\nIf we then use that node for a new non-root node, it\u0027ll still have a\npointer to the old root instead of being zeroed - fix this by zeroing it\nin the cmpxchg failure path.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47668",
          "url": "https://www.suse.com/security/cve/CVE-2024-47668"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231502 for CVE-2024-47668",
          "url": "https://bugzilla.suse.com/1231502"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47668"
    },
    {
      "cve": "CVE-2024-47672",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47672"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: don\u0027t wait for tx queues if firmware is dead\n\nThere is a WARNING in iwl_trans_wait_tx_queues_empty() (that was\nrecently converted from just a message), that can be hit if we\nwait for TX queues to become empty after firmware died. Clearly,\nwe can\u0027t expect anything from the firmware after it\u0027s declared dead.\n\nDon\u0027t call iwl_trans_wait_tx_queues_empty() in this case. While it could\nbe a good idea to stop the flow earlier, the flush functions do some\nmaintenance work that is not related to the firmware, so keep that part\nof the code running even when the firmware is not running.\n\n[edit commit message]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47672",
          "url": "https://www.suse.com/security/cve/CVE-2024-47672"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231540 for CVE-2024-47672",
          "url": "https://bugzilla.suse.com/1231540"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-47672"
    },
    {
      "cve": "CVE-2024-47673",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47673"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: pause TCM when the firmware is stopped\n\nNot doing so will make us send a host command to the transport while the\nfirmware is not alive, which will trigger a WARNING.\n\nbad state = 0\nWARNING: CPU: 2 PID: 17434 at drivers/net/wireless/intel/iwlwifi/iwl-trans.c:115 iwl_trans_send_cmd+0x1cb/0x1e0 [iwlwifi]\nRIP: 0010:iwl_trans_send_cmd+0x1cb/0x1e0 [iwlwifi]\nCall Trace:\n \u003cTASK\u003e\n iwl_mvm_send_cmd+0x40/0xc0 [iwlmvm]\n iwl_mvm_config_scan+0x198/0x260 [iwlmvm]\n iwl_mvm_recalc_tcm+0x730/0x11d0 [iwlmvm]\n iwl_mvm_tcm_work+0x1d/0x30 [iwlmvm]\n process_one_work+0x29e/0x640\n worker_thread+0x2df/0x690\n ? rescuer_thread+0x540/0x540\n kthread+0x192/0x1e0\n ? set_kthread_struct+0x90/0x90\n ret_from_fork+0x22/0x30",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47673",
          "url": "https://www.suse.com/security/cve/CVE-2024-47673"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231539 for CVE-2024-47673",
          "url": "https://bugzilla.suse.com/1231539"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-47673"
    },
    {
      "cve": "CVE-2024-47674",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47674"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: avoid leaving partial pfn mappings around in error case\n\nAs Jann points out, PFN mappings are special, because unlike normal\nmemory mappings, there is no lifetime information associated with the\nmapping - it is just a raw mapping of PFNs with no reference counting of\na \u0027struct page\u0027.\n\nThat\u0027s all very much intentional, but it does mean that it\u0027s easy to\nmess up the cleanup in case of errors.  Yes, a failed mmap() will always\neventually clean up any partial mappings, but without any explicit\nlifetime in the page table mapping itself, it\u0027s very easy to do the\nerror handling in the wrong order.\n\nIn particular, it\u0027s easy to mistakenly free the physical backing store\nbefore the page tables are actually cleaned up and (temporarily) have\nstale dangling PTE entries.\n\nTo make this situation less error-prone, just make sure that any partial\npfn mapping is torn down early, before any other error handling.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47674",
          "url": "https://www.suse.com/security/cve/CVE-2024-47674"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231673 for CVE-2024-47674",
          "url": "https://bugzilla.suse.com/1231673"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231676 for CVE-2024-47674",
          "url": "https://bugzilla.suse.com/1231676"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-47674"
    },
    {
      "cve": "CVE-2024-47684",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47684"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: check skb is non-NULL in tcp_rto_delta_us()\n\nWe have some machines running stock Ubuntu 20.04.6 which is their 5.4.0-174-generic\nkernel that are running ceph and recently hit a null ptr dereference in\ntcp_rearm_rto(). Initially hitting it from the TLP path, but then later we also\nsaw it getting hit from the RACK case as well. Here are examples of the oops\nmessages we saw in each of those cases:\n\nJul 26 15:05:02 rx [11061395.780353] BUG: kernel NULL pointer dereference, address: 0000000000000020\nJul 26 15:05:02 rx [11061395.787572] #PF: supervisor read access in kernel mode\nJul 26 15:05:02 rx [11061395.792971] #PF: error_code(0x0000) - not-present page\nJul 26 15:05:02 rx [11061395.798362] PGD 0 P4D 0\nJul 26 15:05:02 rx [11061395.801164] Oops: 0000 [#1] SMP NOPTI\nJul 26 15:05:02 rx [11061395.805091] CPU: 0 PID: 9180 Comm: msgr-worker-1 Tainted: G W 5.4.0-174-generic #193-Ubuntu\nJul 26 15:05:02 rx [11061395.814996] Hardware name: Supermicro SMC 2x26 os-gen8 64C NVME-Y 256G/H12SSW-NTR, BIOS 2.5.V1.2U.NVMe.UEFI 05/09/2023\nJul 26 15:05:02 rx [11061395.825952] RIP: 0010:tcp_rearm_rto+0xe4/0x160\nJul 26 15:05:02 rx [11061395.830656] Code: 87 ca 04 00 00 00 5b 41 5c 41 5d 5d c3 c3 49 8b bc 24 40 06 00 00 eb 8d 48 bb cf f7 53 e3 a5 9b c4 20 4c 89 ef e8 0c fe 0e 00 \u003c48\u003e 8b 78 20 48 c1 ef 03 48 89 f8 41 8b bc 24 80 04 00 00 48 f7 e3\nJul 26 15:05:02 rx [11061395.849665] RSP: 0018:ffffb75d40003e08 EFLAGS: 00010246\nJul 26 15:05:02 rx [11061395.855149] RAX: 0000000000000000 RBX: 20c49ba5e353f7cf RCX: 0000000000000000\nJul 26 15:05:02 rx [11061395.862542] RDX: 0000000062177c30 RSI: 000000000000231c RDI: ffff9874ad283a60\nJul 26 15:05:02 rx [11061395.869933] RBP: ffffb75d40003e20 R08: 0000000000000000 R09: ffff987605e20aa8\nJul 26 15:05:02 rx [11061395.877318] R10: ffffb75d40003f00 R11: ffffb75d4460f740 R12: ffff9874ad283900\nJul 26 15:05:02 rx [11061395.884710] R13: ffff9874ad283a60 R14: ffff9874ad283980 R15: ffff9874ad283d30\nJul 26 15:05:02 rx [11061395.892095] FS: 00007f1ef4a2e700(0000) GS:ffff987605e00000(0000) knlGS:0000000000000000\nJul 26 15:05:02 rx [11061395.900438] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nJul 26 15:05:02 rx [11061395.906435] CR2: 0000000000000020 CR3: 0000003e450ba003 CR4: 0000000000760ef0\nJul 26 15:05:02 rx [11061395.913822] PKRU: 55555554\nJul 26 15:05:02 rx [11061395.916786] Call Trace:\nJul 26 15:05:02 rx [11061395.919488]\nJul 26 15:05:02 rx [11061395.921765] ? show_regs.cold+0x1a/0x1f\nJul 26 15:05:02 rx [11061395.925859] ? __die+0x90/0xd9\nJul 26 15:05:02 rx [11061395.929169] ? no_context+0x196/0x380\nJul 26 15:05:02 rx [11061395.933088] ? ip6_protocol_deliver_rcu+0x4e0/0x4e0\nJul 26 15:05:02 rx [11061395.938216] ? ip6_sublist_rcv_finish+0x3d/0x50\nJul 26 15:05:02 rx [11061395.943000] ? __bad_area_nosemaphore+0x50/0x1a0\nJul 26 15:05:02 rx [11061395.947873] ? bad_area_nosemaphore+0x16/0x20\nJul 26 15:05:02 rx [11061395.952486] ? do_user_addr_fault+0x267/0x450\nJul 26 15:05:02 rx [11061395.957104] ? ipv6_list_rcv+0x112/0x140\nJul 26 15:05:02 rx [11061395.961279] ? __do_page_fault+0x58/0x90\nJul 26 15:05:02 rx [11061395.965458] ? do_page_fault+0x2c/0xe0\nJul 26 15:05:02 rx [11061395.969465] ? page_fault+0x34/0x40\nJul 26 15:05:02 rx [11061395.973217] ? tcp_rearm_rto+0xe4/0x160\nJul 26 15:05:02 rx [11061395.977313] ? tcp_rearm_rto+0xe4/0x160\nJul 26 15:05:02 rx [11061395.981408] tcp_send_loss_probe+0x10b/0x220\nJul 26 15:05:02 rx [11061395.985937] tcp_write_timer_handler+0x1b4/0x240\nJul 26 15:05:02 rx [11061395.990809] tcp_write_timer+0x9e/0xe0\nJul 26 15:05:02 rx [11061395.994814] ? tcp_write_timer_handler+0x240/0x240\nJul 26 15:05:02 rx [11061395.999866] call_timer_fn+0x32/0x130\nJul 26 15:05:02 rx [11061396.003782] __run_timers.part.0+0x180/0x280\nJul 26 15:05:02 rx [11061396.008309] ? recalibrate_cpu_khz+0x10/0x10\nJul 26 15:05:02 rx [11061396.012841] ? native_x2apic_icr_write+0x30/0x30\nJul 26 15:05:02 rx [11061396.017718] ? lapic_next_even\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47684",
          "url": "https://www.suse.com/security/cve/CVE-2024-47684"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231987 for CVE-2024-47684",
          "url": "https://bugzilla.suse.com/1231987"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231993 for CVE-2024-47684",
          "url": "https://bugzilla.suse.com/1231993"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-47684"
    },
    {
      "cve": "CVE-2024-47685",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47685"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put()\n\nsyzbot reported that nf_reject_ip6_tcphdr_put() was possibly sending\ngarbage on the four reserved tcp bits (th-\u003eres1)\n\nUse skb_put_zero() to clear the whole TCP header,\nas done in nf_reject_ip_tcphdr_put()\n\nBUG: KMSAN: uninit-value in nf_reject_ip6_tcphdr_put+0x688/0x6c0 net/ipv6/netfilter/nf_reject_ipv6.c:255\n  nf_reject_ip6_tcphdr_put+0x688/0x6c0 net/ipv6/netfilter/nf_reject_ipv6.c:255\n  nf_send_reset6+0xd84/0x15b0 net/ipv6/netfilter/nf_reject_ipv6.c:344\n  nft_reject_inet_eval+0x3c1/0x880 net/netfilter/nft_reject_inet.c:48\n  expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n  nft_do_chain+0x438/0x22a0 net/netfilter/nf_tables_core.c:288\n  nft_do_chain_inet+0x41a/0x4f0 net/netfilter/nft_chain_filter.c:161\n  nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n  nf_hook_slow+0xf4/0x400 net/netfilter/core.c:626\n  nf_hook include/linux/netfilter.h:269 [inline]\n  NF_HOOK include/linux/netfilter.h:312 [inline]\n  ipv6_rcv+0x29b/0x390 net/ipv6/ip6_input.c:310\n  __netif_receive_skb_one_core net/core/dev.c:5661 [inline]\n  __netif_receive_skb+0x1da/0xa00 net/core/dev.c:5775\n  process_backlog+0x4ad/0xa50 net/core/dev.c:6108\n  __napi_poll+0xe7/0x980 net/core/dev.c:6772\n  napi_poll net/core/dev.c:6841 [inline]\n  net_rx_action+0xa5a/0x19b0 net/core/dev.c:6963\n  handle_softirqs+0x1ce/0x800 kernel/softirq.c:554\n  __do_softirq+0x14/0x1a kernel/softirq.c:588\n  do_softirq+0x9a/0x100 kernel/softirq.c:455\n  __local_bh_enable_ip+0x9f/0xb0 kernel/softirq.c:382\n  local_bh_enable include/linux/bottom_half.h:33 [inline]\n  rcu_read_unlock_bh include/linux/rcupdate.h:908 [inline]\n  __dev_queue_xmit+0x2692/0x5610 net/core/dev.c:4450\n  dev_queue_xmit include/linux/netdevice.h:3105 [inline]\n  neigh_resolve_output+0x9ca/0xae0 net/core/neighbour.c:1565\n  neigh_output include/net/neighbour.h:542 [inline]\n  ip6_finish_output2+0x2347/0x2ba0 net/ipv6/ip6_output.c:141\n  __ip6_finish_output net/ipv6/ip6_output.c:215 [inline]\n  ip6_finish_output+0xbb8/0x14b0 net/ipv6/ip6_output.c:226\n  NF_HOOK_COND include/linux/netfilter.h:303 [inline]\n  ip6_output+0x356/0x620 net/ipv6/ip6_output.c:247\n  dst_output include/net/dst.h:450 [inline]\n  NF_HOOK include/linux/netfilter.h:314 [inline]\n  ip6_xmit+0x1ba6/0x25d0 net/ipv6/ip6_output.c:366\n  inet6_csk_xmit+0x442/0x530 net/ipv6/inet6_connection_sock.c:135\n  __tcp_transmit_skb+0x3b07/0x4880 net/ipv4/tcp_output.c:1466\n  tcp_transmit_skb net/ipv4/tcp_output.c:1484 [inline]\n  tcp_connect+0x35b6/0x7130 net/ipv4/tcp_output.c:4143\n  tcp_v6_connect+0x1bcc/0x1e40 net/ipv6/tcp_ipv6.c:333\n  __inet_stream_connect+0x2ef/0x1730 net/ipv4/af_inet.c:679\n  inet_stream_connect+0x6a/0xd0 net/ipv4/af_inet.c:750\n  __sys_connect_file net/socket.c:2061 [inline]\n  __sys_connect+0x606/0x690 net/socket.c:2078\n  __do_sys_connect net/socket.c:2088 [inline]\n  __se_sys_connect net/socket.c:2085 [inline]\n  __x64_sys_connect+0x91/0xe0 net/socket.c:2085\n  x64_sys_call+0x27a5/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:43\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was stored to memory at:\n  nf_reject_ip6_tcphdr_put+0x60c/0x6c0 net/ipv6/netfilter/nf_reject_ipv6.c:249\n  nf_send_reset6+0xd84/0x15b0 net/ipv6/netfilter/nf_reject_ipv6.c:344\n  nft_reject_inet_eval+0x3c1/0x880 net/netfilter/nft_reject_inet.c:48\n  expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n  nft_do_chain+0x438/0x22a0 net/netfilter/nf_tables_core.c:288\n  nft_do_chain_inet+0x41a/0x4f0 net/netfilter/nft_chain_filter.c:161\n  nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n  nf_hook_slow+0xf4/0x400 net/netfilter/core.c:626\n  nf_hook include/linux/netfilter.h:269 [inline]\n  NF_HOOK include/linux/netfilter.h:312 [inline]\n  ipv6_rcv+0x29b/0x390 net/ipv6/ip6_input.c:310\n  __netif_receive_skb_one_core\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47685",
          "url": "https://www.suse.com/security/cve/CVE-2024-47685"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231998 for CVE-2024-47685",
          "url": "https://bugzilla.suse.com/1231998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47685"
    },
    {
      "cve": "CVE-2024-47692",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47692"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: return -EINVAL when namelen is 0\n\nWhen we have a corrupted main.sqlite in /var/lib/nfs/nfsdcld/, it may\nresult in namelen being 0, which will cause memdup_user() to return\nZERO_SIZE_PTR.\nWhen we access the name.data that has been assigned the value of\nZERO_SIZE_PTR in nfs4_client_to_reclaim(), null pointer dereference is\ntriggered.\n\n[ T1205] ==================================================================\n[ T1205] BUG: KASAN: null-ptr-deref in nfs4_client_to_reclaim+0xe9/0x260\n[ T1205] Read of size 1 at addr 0000000000000010 by task nfsdcld/1205\n[ T1205]\n[ T1205] CPU: 11 PID: 1205 Comm: nfsdcld Not tainted 5.10.0-00003-g2c1423731b8d #406\n[ T1205] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS ?-20190727_073836-buildvm-ppc64le-16.ppc.fedoraproject.org-3.fc31 04/01/2014\n[ T1205] Call Trace:\n[ T1205]  dump_stack+0x9a/0xd0\n[ T1205]  ? nfs4_client_to_reclaim+0xe9/0x260\n[ T1205]  __kasan_report.cold+0x34/0x84\n[ T1205]  ? nfs4_client_to_reclaim+0xe9/0x260\n[ T1205]  kasan_report+0x3a/0x50\n[ T1205]  nfs4_client_to_reclaim+0xe9/0x260\n[ T1205]  ? nfsd4_release_lockowner+0x410/0x410\n[ T1205]  cld_pipe_downcall+0x5ca/0x760\n[ T1205]  ? nfsd4_cld_tracking_exit+0x1d0/0x1d0\n[ T1205]  ? down_write_killable_nested+0x170/0x170\n[ T1205]  ? avc_policy_seqno+0x28/0x40\n[ T1205]  ? selinux_file_permission+0x1b4/0x1e0\n[ T1205]  rpc_pipe_write+0x84/0xb0\n[ T1205]  vfs_write+0x143/0x520\n[ T1205]  ksys_write+0xc9/0x170\n[ T1205]  ? __ia32_sys_read+0x50/0x50\n[ T1205]  ? ktime_get_coarse_real_ts64+0xfe/0x110\n[ T1205]  ? ktime_get_coarse_real_ts64+0xa2/0x110\n[ T1205]  do_syscall_64+0x33/0x40\n[ T1205]  entry_SYSCALL_64_after_hwframe+0x67/0xd1\n[ T1205] RIP: 0033:0x7fdbdb761bc7\n[ T1205] Code: 0f 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 514\n[ T1205] RSP: 002b:00007fff8c4b7248 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\n[ T1205] RAX: ffffffffffffffda RBX: 000000000000042b RCX: 00007fdbdb761bc7\n[ T1205] RDX: 000000000000042b RSI: 00007fff8c4b75f0 RDI: 0000000000000008\n[ T1205] RBP: 00007fdbdb761bb0 R08: 0000000000000000 R09: 0000000000000001\n[ T1205] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000042b\n[ T1205] R13: 0000000000000008 R14: 00007fff8c4b75f0 R15: 0000000000000000\n[ T1205] ==================================================================\n\nFix it by checking namelen.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47692",
          "url": "https://www.suse.com/security/cve/CVE-2024-47692"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231857 for CVE-2024-47692",
          "url": "https://bugzilla.suse.com/1231857"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47692"
    },
    {
      "cve": "CVE-2024-47704",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47704"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check link_res-\u003ehpo_dp_link_enc before using it\n\n[WHAT \u0026 HOW]\nFunctions dp_enable_link_phy and dp_disable_link_phy can pass link_res\nwithout initializing hpo_dp_link_enc and it is necessary to check for\nnull before dereferencing.\n\nThis fixes 2 FORWARD_NULL issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47704",
          "url": "https://www.suse.com/security/cve/CVE-2024-47704"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231944 for CVE-2024-47704",
          "url": "https://bugzilla.suse.com/1231944"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47704"
    },
    {
      "cve": "CVE-2024-47705",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47705"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix potential invalid pointer dereference in blk_add_partition\n\nThe blk_add_partition() function initially used a single if-condition\n(IS_ERR(part)) to check for errors when adding a partition. This was\nmodified to handle the specific case of -ENXIO separately, allowing the\nfunction to proceed without logging the error in this case. However,\nthis change unintentionally left a path where md_autodetect_dev()\ncould be called without confirming that part is a valid pointer.\n\nThis commit separates the error handling logic by splitting the\ninitial if-condition, improving code readability and handling specific\nerror scenarios explicitly. The function now distinguishes the general\nerror case from -ENXIO without altering the existing behavior of\nmd_autodetect_dev() calls.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47705",
          "url": "https://www.suse.com/security/cve/CVE-2024-47705"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231872 for CVE-2024-47705",
          "url": "https://bugzilla.suse.com/1231872"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47705"
    },
    {
      "cve": "CVE-2024-47706",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47706"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix possible UAF for bfqq-\u003ebic with merge chain\n\n1) initial state, three tasks:\n\n\t\tProcess 1       Process 2\tProcess 3\n\t\t (BIC1)          (BIC2)\t\t (BIC3)\n\t\t  |  \u039b            |  \u039b\t\t  |  \u039b\n\t\t  |  |            |  |\t\t  |  |\n\t\t  V  |            V  |\t\t  V  |\n\t\t  bfqq1           bfqq2\t\t  bfqq3\nprocess ref:\t   1\t\t    1\t\t    1\n\n2) bfqq1 merged to bfqq2:\n\n\t\tProcess 1       Process 2\tProcess 3\n\t\t (BIC1)          (BIC2)\t\t (BIC3)\n\t\t  |               |\t\t  |  \u039b\n\t\t  \\--------------\\|\t\t  |  |\n\t\t                  V\t\t  V  |\n\t\t  bfqq1---------\u003ebfqq2\t\t  bfqq3\nprocess ref:\t   0\t\t    2\t\t    1\n\n3) bfqq2 merged to bfqq3:\n\n\t\tProcess 1       Process 2\tProcess 3\n\t\t (BIC1)          (BIC2)\t\t (BIC3)\n\t here -\u003e \u039b                |\t\t  |\n\t\t  \\--------------\\ \\-------------\\|\n\t\t                  V\t\t  V\n\t\t  bfqq1---------\u003ebfqq2----------\u003ebfqq3\nprocess ref:\t   0\t\t    1\t\t    3\n\nIn this case, IO from Process 1 will get bfqq2 from BIC1 first, and then\nget bfqq3 through merge chain, and finially handle IO by bfqq3.\nHowerver, current code will think bfqq2 is owned by BIC1, like initial\nstate, and set bfqq2-\u003ebic to BIC1.\n\nbfq_insert_request\n-\u003e by Process 1\n bfqq = bfq_init_rq(rq)\n  bfqq = bfq_get_bfqq_handle_split\n   bfqq = bic_to_bfqq\n   -\u003e get bfqq2 from BIC1\n bfqq-\u003eref++\n rq-\u003eelv.priv[0] = bic\n rq-\u003eelv.priv[1] = bfqq\n if (bfqq_process_refs(bfqq) == 1)\n  bfqq-\u003ebic = bic\n  -\u003e record BIC1 to bfqq2\n\n  __bfq_insert_request\n   new_bfqq = bfq_setup_cooperator\n   -\u003e get bfqq3 from bfqq2-\u003enew_bfqq\n   bfqq_request_freed(bfqq)\n   new_bfqq-\u003eref++\n   rq-\u003eelv.priv[1] = new_bfqq\n   -\u003e handle IO by bfqq3\n\nFix the problem by checking bfqq is from merge chain fist. And this\nmight fix a following problem reported by our syzkaller(unreproducible):\n\n==================================================================\nBUG: KASAN: slab-use-after-free in bfq_do_early_stable_merge block/bfq-iosched.c:5692 [inline]\nBUG: KASAN: slab-use-after-free in bfq_do_or_sched_stable_merge block/bfq-iosched.c:5805 [inline]\nBUG: KASAN: slab-use-after-free in bfq_get_queue+0x25b0/0x2610 block/bfq-iosched.c:5889\nWrite of size 1 at addr ffff888123839eb8 by task kworker/0:1H/18595\n\nCPU: 0 PID: 18595 Comm: kworker/0:1H Tainted: G             L     6.6.0-07439-gba2303cacfda #6\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014\nWorkqueue: kblockd blk_mq_requeue_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x91/0xf0 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:364 [inline]\n print_report+0x10d/0x610 mm/kasan/report.c:475\n kasan_report+0x8e/0xc0 mm/kasan/report.c:588\n bfq_do_early_stable_merge block/bfq-iosched.c:5692 [inline]\n bfq_do_or_sched_stable_merge block/bfq-iosched.c:5805 [inline]\n bfq_get_queue+0x25b0/0x2610 block/bfq-iosched.c:5889\n bfq_get_bfqq_handle_split+0x169/0x5d0 block/bfq-iosched.c:6757\n bfq_init_rq block/bfq-iosched.c:6876 [inline]\n bfq_insert_request block/bfq-iosched.c:6254 [inline]\n bfq_insert_requests+0x1112/0x5cf0 block/bfq-iosched.c:6304\n blk_mq_insert_request+0x290/0x8d0 block/blk-mq.c:2593\n blk_mq_requeue_work+0x6bc/0xa70 block/blk-mq.c:1502\n process_one_work kernel/workqueue.c:2627 [inline]\n process_scheduled_works+0x432/0x13f0 kernel/workqueue.c:2700\n worker_thread+0x6f2/0x1160 kernel/workqueue.c:2781\n kthread+0x33c/0x440 kernel/kthread.c:388\n ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:305\n \u003c/TASK\u003e\n\nAllocated by task 20776:\n kasan_save_stack+0x20/0x40 mm/kasan/common.c:45\n kasan_set_track+0x25/0x30 mm/kasan/common.c:52\n __kasan_slab_alloc+0x87/0x90 mm/kasan/common.c:328\n kasan_slab_alloc include/linux/kasan.h:188 [inline]\n slab_post_alloc_hook mm/slab.h:763 [inline]\n slab_alloc_node mm/slub.c:3458 [inline]\n kmem_cache_alloc_node+0x1a4/0x6f0 mm/slub.c:3503\n ioc_create_icq block/blk-ioc.c:370 [inline]\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47706",
          "url": "https://www.suse.com/security/cve/CVE-2024-47706"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231942 for CVE-2024-47706",
          "url": "https://bugzilla.suse.com/1231942"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231943 for CVE-2024-47706",
          "url": "https://bugzilla.suse.com/1231943"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-47706"
    },
    {
      "cve": "CVE-2024-47707",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47707"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()\n\nBlamed commit accidentally removed a check for rt-\u003ert6i_idev being NULL,\nas spotted by syzbot:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 1 UID: 0 PID: 10998 Comm: syz-executor Not tainted 6.11.0-rc6-syzkaller-00208-g625403177711 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\n RIP: 0010:rt6_uncached_list_flush_dev net/ipv6/route.c:177 [inline]\n RIP: 0010:rt6_disable_ip+0x33e/0x7e0 net/ipv6/route.c:4914\nCode: 41 80 3c 04 00 74 0a e8 90 d0 9b f7 48 8b 7c 24 08 48 8b 07 48 89 44 24 10 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df \u003c80\u003e 3c 08 00 74 08 4c 89 f7 e8 64 d0 9b f7 48 8b 44 24 18 49 39 06\nRSP: 0018:ffffc900047374e0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: 1ffff1100fdf8f33 RCX: dffffc0000000000\nRDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88807efc78c0\nRBP: ffffc900047375d0 R08: 0000000000000003 R09: fffff520008e6e8c\nR10: dffffc0000000000 R11: fffff520008e6e8c R12: 1ffff1100fdf8f18\nR13: ffff88807efc7998 R14: 0000000000000000 R15: ffff88807efc7930\nFS:  0000000000000000(0000) GS:ffff8880b8900000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020002a80 CR3: 0000000022f62000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n  addrconf_ifdown+0x15d/0x1bd0 net/ipv6/addrconf.c:3856\n addrconf_notify+0x3cb/0x1020\n  notifier_call_chain+0x19f/0x3e0 kernel/notifier.c:93\n  call_netdevice_notifiers_extack net/core/dev.c:2032 [inline]\n  call_netdevice_notifiers net/core/dev.c:2046 [inline]\n  unregister_netdevice_many_notify+0xd81/0x1c40 net/core/dev.c:11352\n  unregister_netdevice_many net/core/dev.c:11414 [inline]\n  unregister_netdevice_queue+0x303/0x370 net/core/dev.c:11289\n  unregister_netdevice include/linux/netdevice.h:3129 [inline]\n  __tun_detach+0x6b9/0x1600 drivers/net/tun.c:685\n  tun_detach drivers/net/tun.c:701 [inline]\n  tun_chr_close+0x108/0x1b0 drivers/net/tun.c:3510\n  __fput+0x24a/0x8a0 fs/file_table.c:422\n  task_work_run+0x24f/0x310 kernel/task_work.c:228\n  exit_task_work include/linux/task_work.h:40 [inline]\n  do_exit+0xa2f/0x27f0 kernel/exit.c:882\n  do_group_exit+0x207/0x2c0 kernel/exit.c:1031\n  __do_sys_exit_group kernel/exit.c:1042 [inline]\n  __se_sys_exit_group kernel/exit.c:1040 [inline]\n  __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1040\n  x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f1acc77def9\nCode: Unable to access opcode bytes at 0x7f1acc77decf.\nRSP: 002b:00007ffeb26fa738 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7\nRAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1acc77def9\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043\nRBP: 00007f1acc7dd508 R08: 00007ffeb26f84d7 R09: 0000000000000003\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001\nR13: 0000000000000003 R14: 00000000ffffffff R15: 00007ffeb26fa8e0\n \u003c/TASK\u003e\nModules linked in:\n---[ end trace 0000000000000000 ]---\n RIP: 0010:rt6_uncached_list_flush_dev net/ipv6/route.c:177 [inline]\n RIP: 0010:rt6_disable_ip+0x33e/0x7e0 net/ipv6/route.c:4914\nCode: 41 80 3c 04 00 74 0a e8 90 d0 9b f7 48 8b 7c 24 08 48 8b 07 48 89 44 24 10 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df \u003c80\u003e 3c 08 00 74 08 4c 89 f7 e8 64 d0 9b f7 48 8b 44 24 18 49 39 06\nRSP: 0018:ffffc900047374e0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: 1ffff1100fdf8f33 RCX: dffffc0000000000\nRDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88807efc78c0\nR\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47707",
          "url": "https://www.suse.com/security/cve/CVE-2024-47707"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231935 for CVE-2024-47707",
          "url": "https://bugzilla.suse.com/1231935"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47707"
    },
    {
      "cve": "CVE-2024-47710",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47710"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsock_map: Add a cond_resched() in sock_hash_free()\n\nSeveral syzbot soft lockup reports all have in common sock_hash_free()\n\nIf a map with a large number of buckets is destroyed, we need to yield\nthe cpu when needed.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47710",
          "url": "https://www.suse.com/security/cve/CVE-2024-47710"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232049 for CVE-2024-47710",
          "url": "https://bugzilla.suse.com/1232049"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.5,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-47710"
    },
    {
      "cve": "CVE-2024-47720",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47720"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the  dcn30_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for nullity at line 386, but then it\nwas being dereferenced without any nullity check at line 401. This\ncould potentially lead to a null pointer dereference error if\nset_output_gamma is indeed null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a nullity check for\nset_output_gamma before the call to set_output_gamma at line 401. If\nset_output_gamma is null, we log an error message and do not call the\nfunction.\n\nThis fix prevents a potential null pointer dereference error.\n\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:401 dcn30_set_output_transfer_func()\nerror: we previously assumed \u0027mpc-\u003efuncs-\u003eset_output_gamma\u0027 could be null (see line 386)\n\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c\n    373 bool dcn30_set_output_transfer_func(struct dc *dc,\n    374                                 struct pipe_ctx *pipe_ctx,\n    375                                 const struct dc_stream_state *stream)\n    376 {\n    377         int mpcc_id = pipe_ctx-\u003eplane_res.hubp-\u003einst;\n    378         struct mpc *mpc = pipe_ctx-\u003estream_res.opp-\u003ectx-\u003edc-\u003eres_pool-\u003empc;\n    379         const struct pwl_params *params = NULL;\n    380         bool ret = false;\n    381\n    382         /* program OGAM or 3DLUT only for the top pipe*/\n    383         if (pipe_ctx-\u003etop_pipe == NULL) {\n    384                 /*program rmu shaper and 3dlut in MPC*/\n    385                 ret = dcn30_set_mpc_shaper_3dlut(pipe_ctx, stream);\n    386                 if (ret == false \u0026\u0026 mpc-\u003efuncs-\u003eset_output_gamma) {\n                                            ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ If this is NULL\n\n    387                         if (stream-\u003eout_transfer_func.type == TF_TYPE_HWPWL)\n    388                                 params = \u0026stream-\u003eout_transfer_func.pwl;\n    389                         else if (pipe_ctx-\u003estream-\u003eout_transfer_func.type ==\n    390                                         TF_TYPE_DISTRIBUTED_POINTS \u0026\u0026\n    391                                         cm3_helper_translate_curve_to_hw_format(\n    392                                         \u0026stream-\u003eout_transfer_func,\n    393                                         \u0026mpc-\u003eblender_params, false))\n    394                                 params = \u0026mpc-\u003eblender_params;\n    395                          /* there are no ROM LUTs in OUTGAM */\n    396                         if (stream-\u003eout_transfer_func.type == TF_TYPE_PREDEFINED)\n    397                                 BREAK_TO_DEBUGGER();\n    398                 }\n    399         }\n    400\n--\u003e 401         mpc-\u003efuncs-\u003eset_output_gamma(mpc, mpcc_id, params);\n                ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ Then it will crash\n\n    402         return ret;\n    403 }",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47720",
          "url": "https://www.suse.com/security/cve/CVE-2024-47720"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232043 for CVE-2024-47720",
          "url": "https://bugzilla.suse.com/1232043"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47720"
    },
    {
      "cve": "CVE-2024-47727",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47727"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/tdx: Fix \"in-kernel MMIO\" check\n\nTDX only supports kernel-initiated MMIO operations. The handle_mmio()\nfunction checks if the #VE exception occurred in the kernel and rejects\nthe operation if it did not.\n\nHowever, userspace can deceive the kernel into performing MMIO on its\nbehalf. For example, if userspace can point a syscall to an MMIO address,\nsyscall does get_user() or put_user() on it, triggering MMIO #VE. The\nkernel will treat the #VE as in-kernel MMIO.\n\nEnsure that the target MMIO address is within the kernel before decoding\ninstruction.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47727",
          "url": "https://www.suse.com/security/cve/CVE-2024-47727"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232116 for CVE-2024-47727",
          "url": "https://bugzilla.suse.com/1232116"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47727"
    },
    {
      "cve": "CVE-2024-47730",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47730"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: hisilicon/qm - inject error before stopping queue\n\nThe master ooo cannot be completely closed when the\naccelerator core reports memory error. Therefore, the driver\nneeds to inject the qm error to close the master ooo. Currently,\nthe qm error is injected after stopping queue, memory may be\nreleased immediately after stopping queue, causing the device to\naccess the released memory. Therefore, error is injected to close master\nooo before stopping queue to ensure that the device does not access\nthe released memory.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47730",
          "url": "https://www.suse.com/security/cve/CVE-2024-47730"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232075 for CVE-2024-47730",
          "url": "https://bugzilla.suse.com/1232075"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47730"
    },
    {
      "cve": "CVE-2024-47738",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47738"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: don\u0027t use rate mask for offchannel TX either\n\nLike the commit ab9177d83c04 (\"wifi: mac80211: don\u0027t use rate mask for\nscanning\"), ignore incorrect settings to avoid no supported rate warning\nreported by syzbot.\n\nThe syzbot did bisect and found cause is commit 9df66d5b9f45 (\"cfg80211:\nfix default HE tx bitrate mask in 2G band\"), which however corrects\nbitmask of HE MCS and recognizes correctly settings of empty legacy rate\nplus HE MCS rate instead of returning -EINVAL.\n\nAs suggestions [1], follow the change of SCAN TX to consider this case of\noffchannel TX as well.\n\n[1] https://lore.kernel.org/linux-wireless/6ab2dc9c3afe753ca6fdcdd1421e7a1f47e87b84.camel@sipsolutions.net/T/#m2ac2a6d2be06a37c9c47a3d8a44b4f647ed4f024",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47738",
          "url": "https://www.suse.com/security/cve/CVE-2024-47738"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232114 for CVE-2024-47738",
          "url": "https://bugzilla.suse.com/1232114"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47738"
    },
    {
      "cve": "CVE-2024-47739",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47739"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\npadata: use integer wrap around to prevent deadlock on seq_nr overflow\n\nWhen submitting more than 2^32 padata objects to padata_do_serial, the\ncurrent sorting implementation incorrectly sorts padata objects with\noverflowed seq_nr, causing them to be placed before existing objects in\nthe reorder list. This leads to a deadlock in the serialization process\nas padata_find_next cannot match padata-\u003eseq_nr and pd-\u003eprocessed\nbecause the padata instance with overflowed seq_nr will be selected\nnext.\n\nTo fix this, we use an unsigned integer wrap around to correctly sort\npadata objects in scenarios with integer overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47739",
          "url": "https://www.suse.com/security/cve/CVE-2024-47739"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232124 for CVE-2024-47739",
          "url": "https://bugzilla.suse.com/1232124"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47739"
    },
    {
      "cve": "CVE-2024-47745",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47745"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: call the security_mmap_file() LSM hook in remap_file_pages()\n\nThe remap_file_pages syscall handler calls do_mmap() directly, which\ndoesn\u0027t contain the LSM security check. And if the process has called\npersonality(READ_IMPLIES_EXEC) before and remap_file_pages() is called for\nRW pages, this will actually result in remapping the pages to RWX,\nbypassing a W^X policy enforced by SELinux.\n\nSo we should check prot by security_mmap_file LSM hook in the\nremap_file_pages syscall handler before do_mmap() is called. Otherwise, it\npotentially permits an attacker to bypass a W^X policy enforced by\nSELinux.\n\nThe bypass is similar to CVE-2016-10044, which bypass the same thing via\nAIO and can be found in [1].\n\nThe PoC:\n\n$ cat \u003e test.c\n\nint main(void) {\n\tsize_t pagesz = sysconf(_SC_PAGE_SIZE);\n\tint mfd = syscall(SYS_memfd_create, \"test\", 0);\n\tconst char *buf = mmap(NULL, 4 * pagesz, PROT_READ | PROT_WRITE,\n\t\tMAP_SHARED, mfd, 0);\n\tunsigned int old = syscall(SYS_personality, 0xffffffff);\n\tsyscall(SYS_personality, READ_IMPLIES_EXEC | old);\n\tsyscall(SYS_remap_file_pages, buf, pagesz, 0, 2, 0);\n\tsyscall(SYS_personality, old);\n\t// show the RWX page exists even if W^X policy is enforced\n\tint fd = open(\"/proc/self/maps\", O_RDONLY);\n\tunsigned char buf2[1024];\n\twhile (1) {\n\t\tint ret = read(fd, buf2, 1024);\n\t\tif (ret \u003c= 0) break;\n\t\twrite(1, buf2, ret);\n\t}\n\tclose(fd);\n}\n\n$ gcc test.c -o test\n$ ./test | grep rwx\n7f1836c34000-7f1836c35000 rwxs 00002000 00:01 2050 /memfd:test (deleted)\n\n[PM: subject line tweaks]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47745",
          "url": "https://www.suse.com/security/cve/CVE-2024-47745"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232135 for CVE-2024-47745",
          "url": "https://bugzilla.suse.com/1232135"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47745"
    },
    {
      "cve": "CVE-2024-47747",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47747"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition\n\nIn the ether3_probe function, a timer is initialized with a callback\nfunction ether3_ledoff, bound to \u0026prev(dev)-\u003etimer. Once the timer is\nstarted, there is a risk of a race condition if the module or device\nis removed, triggering the ether3_remove function to perform cleanup.\nThe sequence of operations that may lead to a UAF bug is as follows:\n\nCPU0                                    CPU1\n\n                      |  ether3_ledoff\nether3_remove         |\n  free_netdev(dev);   |\n  put_devic           |\n  kfree(dev);         |\n |  ether3_outw(priv(dev)-\u003eregs.config2 |= CFG2_CTRLO, REG_CONFIG2);\n                      | // use dev\n\nFix it by ensuring that the timer is canceled before proceeding with\nthe cleanup in ether3_remove.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47747",
          "url": "https://www.suse.com/security/cve/CVE-2024-47747"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232145 for CVE-2024-47747",
          "url": "https://bugzilla.suse.com/1232145"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232146 for CVE-2024-47747",
          "url": "https://bugzilla.suse.com/1232146"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-47747"
    },
    {
      "cve": "CVE-2024-47748",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47748"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvhost_vdpa: assign irq bypass producer token correctly\n\nWe used to call irq_bypass_unregister_producer() in\nvhost_vdpa_setup_vq_irq() which is problematic as we don\u0027t know if the\ntoken pointer is still valid or not.\n\nActually, we use the eventfd_ctx as the token so the life cycle of the\ntoken should be bound to the VHOST_SET_VRING_CALL instead of\nvhost_vdpa_setup_vq_irq() which could be called by set_status().\n\nFixing this by setting up irq bypass producer\u0027s token when handling\nVHOST_SET_VRING_CALL and un-registering the producer before calling\nvhost_vring_ioctl() to prevent a possible use after free as eventfd\ncould have been released in vhost_vring_ioctl(). And such registering\nand unregistering will only be done if DRIVER_OK is set.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47748",
          "url": "https://www.suse.com/security/cve/CVE-2024-47748"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232174 for CVE-2024-47748",
          "url": "https://bugzilla.suse.com/1232174"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232177 for CVE-2024-47748",
          "url": "https://bugzilla.suse.com/1232177"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-47748"
    },
    {
      "cve": "CVE-2024-49858",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49858"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefistub/tpm: Use ACPI reclaim memory for event log to avoid corruption\n\nThe TPM event log table is a Linux specific construct, where the data\nproduced by the GetEventLog() boot service is cached in memory, and\npassed on to the OS using an EFI configuration table.\n\nThe use of EFI_LOADER_DATA here results in the region being left\nunreserved in the E820 memory map constructed by the EFI stub, and this\nis the memory description that is passed on to the incoming kernel by\nkexec, which is therefore unaware that the region should be reserved.\n\nEven though the utility of the TPM2 event log after a kexec is\nquestionable, any corruption might send the parsing code off into the\nweeds and crash the kernel. So let\u0027s use EFI_ACPI_RECLAIM_MEMORY\ninstead, which is always treated as reserved by the E820 conversion\nlogic.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49858",
          "url": "https://www.suse.com/security/cve/CVE-2024-49858"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232251 for CVE-2024-49858",
          "url": "https://bugzilla.suse.com/1232251"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49858"
    },
    {
      "cve": "CVE-2024-49860",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49860"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: sysfs: validate return type of _STR method\n\nOnly buffer objects are valid return values of _STR.\n\nIf something else is returned description_show() will access invalid\nmemory.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49860",
          "url": "https://www.suse.com/security/cve/CVE-2024-49860"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231861 for CVE-2024-49860",
          "url": "https://bugzilla.suse.com/1231861"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231862 for CVE-2024-49860",
          "url": "https://bugzilla.suse.com/1231862"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49860"
    },
    {
      "cve": "CVE-2024-49866",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49866"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing/timerlat: Fix a race during cpuhp processing\n\nThere is another found exception that the \"timerlat/1\" thread was\nscheduled on CPU0, and lead to timer corruption finally:\n\n```\nODEBUG: init active (active state 0) object: ffff888237c2e108 object type: hrtimer hint: timerlat_irq+0x0/0x220\nWARNING: CPU: 0 PID: 426 at lib/debugobjects.c:518 debug_print_object+0x7d/0xb0\nModules linked in:\nCPU: 0 UID: 0 PID: 426 Comm: timerlat/1 Not tainted 6.11.0-rc7+ #45\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.13.0-1ubuntu1.1 04/01/2014\nRIP: 0010:debug_print_object+0x7d/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n ? __warn+0x7c/0x110\n ? debug_print_object+0x7d/0xb0\n ? report_bug+0xf1/0x1d0\n ? prb_read_valid+0x17/0x20\n ? handle_bug+0x3f/0x70\n ? exc_invalid_op+0x13/0x60\n ? asm_exc_invalid_op+0x16/0x20\n ? debug_print_object+0x7d/0xb0\n ? debug_print_object+0x7d/0xb0\n ? __pfx_timerlat_irq+0x10/0x10\n __debug_object_init+0x110/0x150\n hrtimer_init+0x1d/0x60\n timerlat_main+0xab/0x2d0\n ? __pfx_timerlat_main+0x10/0x10\n kthread+0xb7/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n```\n\nAfter tracing the scheduling event, it was discovered that the migration\nof the \"timerlat/1\" thread was performed during thread creation. Further\nanalysis confirmed that it is because the CPU online processing for\nosnoise is implemented through workers, which is asynchronous with the\noffline processing. When the worker was scheduled to create a thread, the\nCPU may has already been removed from the cpu_online_mask during the offline\nprocess, resulting in the inability to select the right CPU:\n\nT1                       | T2\n[CPUHP_ONLINE]           | cpu_device_down()\nosnoise_hotplug_workfn() |\n                         |     cpus_write_lock()\n                         |     takedown_cpu(1)\n                         |     cpus_write_unlock()\n[CPUHP_OFFLINE]          |\n    cpus_read_lock()     |\n    start_kthread(1)     |\n    cpus_read_unlock()   |\n\nTo fix this, skip online processing if the CPU is already offline.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49866",
          "url": "https://www.suse.com/security/cve/CVE-2024-49866"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232259 for CVE-2024-49866",
          "url": "https://bugzilla.suse.com/1232259"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49866"
    },
    {
      "cve": "CVE-2024-49867",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49867"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: wait for fixup workers before stopping cleaner kthread during umount\n\nDuring unmount, at close_ctree(), we have the following steps in this order:\n\n1) Park the cleaner kthread - this doesn\u0027t destroy the kthread, it basically\n   halts its execution (wake ups against it work but do nothing);\n\n2) We stop the cleaner kthread - this results in freeing the respective\n   struct task_struct;\n\n3) We call btrfs_stop_all_workers() which waits for any jobs running in all\n   the work queues and then free the work queues.\n\nSyzbot reported a case where a fixup worker resulted in a crash when doing\na delayed iput on its inode while attempting to wake up the cleaner at\nbtrfs_add_delayed_iput(), because the task_struct of the cleaner kthread\nwas already freed. This can happen during unmount because we don\u0027t wait\nfor any fixup workers still running before we call kthread_stop() against\nthe cleaner kthread, which stops and free all its resources.\n\nFix this by waiting for any fixup workers at close_ctree() before we call\nkthread_stop() against the cleaner and run pending delayed iputs.\n\nThe stack traces reported by syzbot were the following:\n\n  BUG: KASAN: slab-use-after-free in __lock_acquire+0x77/0x2050 kernel/locking/lockdep.c:5065\n  Read of size 8 at addr ffff8880272a8a18 by task kworker/u8:3/52\n\n  CPU: 1 UID: 0 PID: 52 Comm: kworker/u8:3 Not tainted 6.12.0-rc1-syzkaller #0\n  Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n  Workqueue: btrfs-fixup btrfs_work_helper\n  Call Trace:\n   \u003cTASK\u003e\n   __dump_stack lib/dump_stack.c:94 [inline]\n   dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n   print_address_description mm/kasan/report.c:377 [inline]\n   print_report+0x169/0x550 mm/kasan/report.c:488\n   kasan_report+0x143/0x180 mm/kasan/report.c:601\n   __lock_acquire+0x77/0x2050 kernel/locking/lockdep.c:5065\n   lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5825\n   __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n   _raw_spin_lock_irqsave+0xd5/0x120 kernel/locking/spinlock.c:162\n   class_raw_spinlock_irqsave_constructor include/linux/spinlock.h:551 [inline]\n   try_to_wake_up+0xb0/0x1480 kernel/sched/core.c:4154\n   btrfs_writepage_fixup_worker+0xc16/0xdf0 fs/btrfs/inode.c:2842\n   btrfs_work_helper+0x390/0xc50 fs/btrfs/async-thread.c:314\n   process_one_work kernel/workqueue.c:3229 [inline]\n   process_scheduled_works+0xa63/0x1850 kernel/workqueue.c:3310\n   worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n   kthread+0x2f0/0x390 kernel/kthread.c:389\n   ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n   ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n   \u003c/TASK\u003e\n\n  Allocated by task 2:\n   kasan_save_stack mm/kasan/common.c:47 [inline]\n   kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n   unpoison_slab_object mm/kasan/common.c:319 [inline]\n   __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:345\n   kasan_slab_alloc include/linux/kasan.h:247 [inline]\n   slab_post_alloc_hook mm/slub.c:4086 [inline]\n   slab_alloc_node mm/slub.c:4135 [inline]\n   kmem_cache_alloc_node_noprof+0x16b/0x320 mm/slub.c:4187\n   alloc_task_struct_node kernel/fork.c:180 [inline]\n   dup_task_struct+0x57/0x8c0 kernel/fork.c:1107\n   copy_process+0x5d1/0x3d50 kernel/fork.c:2206\n   kernel_clone+0x223/0x880 kernel/fork.c:2787\n   kernel_thread+0x1bc/0x240 kernel/fork.c:2849\n   create_kthread kernel/kthread.c:412 [inline]\n   kthreadd+0x60d/0x810 kernel/kthread.c:765\n   ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n   ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\n  Freed by task 61:\n   kasan_save_stack mm/kasan/common.c:47 [inline]\n   kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n   kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n   poison_slab_object mm/kasan/common.c:247 [inline]\n   __kasan_slab_free+0x59/0x70 mm/kasan/common.c:264\n   kasan_slab_free include/linux/kasan.h:230 [inline]\n   slab_free_h\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49867",
          "url": "https://www.suse.com/security/cve/CVE-2024-49867"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232262 for CVE-2024-49867",
          "url": "https://bugzilla.suse.com/1232262"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232271 for CVE-2024-49867",
          "url": "https://bugzilla.suse.com/1232271"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49867"
    },
    {
      "cve": "CVE-2024-49881",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49881"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: update orig_path in ext4_find_extent()\n\nIn ext4_find_extent(), if the path is not big enough, we free it and set\n*orig_path to NULL. But after reallocating and successfully initializing\nthe path, we don\u0027t update *orig_path, in which case the caller gets a\nvalid path but a NULL ppath, and this may cause a NULL pointer dereference\nor a path memory leak. For example:\n\next4_split_extent\n  path = *ppath = 2000\n  ext4_find_extent\n    if (depth \u003e path[0].p_maxdepth)\n      kfree(path = 2000);\n      *orig_path = path = NULL;\n      path = kcalloc() = 3000\n  ext4_split_extent_at(*ppath = NULL)\n    path = *ppath;\n    ex = path[depth].p_ext;\n    // NULL pointer dereference!\n\n==================================================================\nBUG: kernel NULL pointer dereference, address: 0000000000000010\nCPU: 6 UID: 0 PID: 576 Comm: fsstress Not tainted 6.11.0-rc2-dirty #847\nRIP: 0010:ext4_split_extent_at+0x6d/0x560\nCall Trace:\n \u003cTASK\u003e\n ext4_split_extent.isra.0+0xcb/0x1b0\n ext4_ext_convert_to_initialized+0x168/0x6c0\n ext4_ext_handle_unwritten_extents+0x325/0x4d0\n ext4_ext_map_blocks+0x520/0xdb0\n ext4_map_blocks+0x2b0/0x690\n ext4_iomap_begin+0x20e/0x2c0\n[...]\n==================================================================\n\nTherefore, *orig_path is updated when the extent lookup succeeds, so that\nthe caller can safely use path or *ppath.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49881",
          "url": "https://www.suse.com/security/cve/CVE-2024-49881"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232201 for CVE-2024-49881",
          "url": "https://bugzilla.suse.com/1232201"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49881"
    },
    {
      "cve": "CVE-2024-49882",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49882"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix double brelse() the buffer of the extents path\n\nIn ext4_ext_try_to_merge_up(), set path[1].p_bh to NULL after it has been\nreleased, otherwise it may be released twice. An example of what triggers\nthis is as follows:\n\n  split2    map    split1\n|--------|-------|--------|\n\next4_ext_map_blocks\n ext4_ext_handle_unwritten_extents\n  ext4_split_convert_extents\n   // path-\u003ep_depth == 0\n   ext4_split_extent\n     // 1. do split1\n     ext4_split_extent_at\n       |ext4_ext_insert_extent\n       |  ext4_ext_create_new_leaf\n       |    ext4_ext_grow_indepth\n       |      le16_add_cpu(\u0026neh-\u003eeh_depth, 1)\n       |    ext4_find_extent\n       |      // return -ENOMEM\n       |// get error and try zeroout\n       |path = ext4_find_extent\n       |  path-\u003ep_depth = 1\n       |ext4_ext_try_to_merge\n       |  ext4_ext_try_to_merge_up\n       |    path-\u003ep_depth = 0\n       |    brelse(path[1].p_bh)  ---\u003e not set to NULL here\n       |// zeroout success\n     // 2. update path\n     ext4_find_extent\n     // 3. do split2\n     ext4_split_extent_at\n       ext4_ext_insert_extent\n         ext4_ext_create_new_leaf\n           ext4_ext_grow_indepth\n             le16_add_cpu(\u0026neh-\u003eeh_depth, 1)\n           ext4_find_extent\n             path[0].p_bh = NULL;\n             path-\u003ep_depth = 1\n             read_extent_tree_block  ---\u003e return err\n             // path[1].p_bh is still the old value\n             ext4_free_ext_path\n               ext4_ext_drop_refs\n                 // path-\u003ep_depth == 1\n                 brelse(path[1].p_bh)  ---\u003e brelse a buffer twice\n\nFinally got the following WARRNING when removing the buffer from lru:\n\n============================================\nVFS: brelse: Trying to free free buffer\nWARNING: CPU: 2 PID: 72 at fs/buffer.c:1241 __brelse+0x58/0x90\nCPU: 2 PID: 72 Comm: kworker/u19:1 Not tainted 6.9.0-dirty #716\nRIP: 0010:__brelse+0x58/0x90\nCall Trace:\n \u003cTASK\u003e\n __find_get_block+0x6e7/0x810\n bdev_getblk+0x2b/0x480\n __ext4_get_inode_loc+0x48a/0x1240\n ext4_get_inode_loc+0xb2/0x150\n ext4_reserve_inode_write+0xb7/0x230\n __ext4_mark_inode_dirty+0x144/0x6a0\n ext4_ext_insert_extent+0x9c8/0x3230\n ext4_ext_map_blocks+0xf45/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n============================================",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49882",
          "url": "https://www.suse.com/security/cve/CVE-2024-49882"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232200 for CVE-2024-49882",
          "url": "https://bugzilla.suse.com/1232200"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49882"
    },
    {
      "cve": "CVE-2024-49883",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49883"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: aovid use-after-free in ext4_ext_insert_extent()\n\nAs Ojaswin mentioned in Link, in ext4_ext_insert_extent(), if the path is\nreallocated in ext4_ext_create_new_leaf(), we\u0027ll use the stale path and\ncause UAF. Below is a sample trace with dummy values:\n\next4_ext_insert_extent\n  path = *ppath = 2000\n  ext4_ext_create_new_leaf(ppath)\n    ext4_find_extent(ppath)\n      path = *ppath = 2000\n      if (depth \u003e path[0].p_maxdepth)\n            kfree(path = 2000);\n            *ppath = path = NULL;\n      path = kcalloc() = 3000\n      *ppath = 3000;\n      return path;\n  /* here path is still 2000, UAF! */\n  eh = path[depth].p_hdr\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_ext_insert_extent+0x26d4/0x3330\nRead of size 8 at addr ffff8881027bf7d0 by task kworker/u36:1/179\nCPU: 3 UID: 0 PID: 179 Comm: kworker/u6:1 Not tainted 6.11.0-rc2-dirty #866\nCall Trace:\n \u003cTASK\u003e\n ext4_ext_insert_extent+0x26d4/0x3330\n ext4_ext_map_blocks+0xe22/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n[...]\n\nAllocated by task 179:\n ext4_find_extent+0x81c/0x1f70\n ext4_ext_map_blocks+0x146/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n ext4_writepages+0x26d/0x4e0\n do_writepages+0x175/0x700\n[...]\n\nFreed by task 179:\n kfree+0xcb/0x240\n ext4_find_extent+0x7c0/0x1f70\n ext4_ext_insert_extent+0xa26/0x3330\n ext4_ext_map_blocks+0xe22/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n ext4_writepages+0x26d/0x4e0\n do_writepages+0x175/0x700\n[...]\n==================================================================\n\nSo use *ppath to update the path to avoid the above problem.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49883",
          "url": "https://www.suse.com/security/cve/CVE-2024-49883"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232199 for CVE-2024-49883",
          "url": "https://bugzilla.suse.com/1232199"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49883"
    },
    {
      "cve": "CVE-2024-49886",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49886"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug\n\nAttaching SST PCI device to VM causes \"BUG: KASAN: slab-out-of-bounds\".\nkasan report:\n[   19.411889] ==================================================================\n[   19.413702] BUG: KASAN: slab-out-of-bounds in _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[   19.415634] Read of size 8 at addr ffff888829e65200 by task cpuhp/16/113\n[   19.417368]\n[   19.418627] CPU: 16 PID: 113 Comm: cpuhp/16 Tainted: G            E      6.9.0 #10\n[   19.420435] Hardware name: VMware, Inc. VMware20,1/440BX Desktop Reference Platform, BIOS VMW201.00V.20192059.B64.2207280713 07/28/2022\n[   19.422687] Call Trace:\n[   19.424091]  \u003cTASK\u003e\n[   19.425448]  dump_stack_lvl+0x5d/0x80\n[   19.426963]  ? _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[   19.428694]  print_report+0x19d/0x52e\n[   19.430206]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[   19.431837]  ? _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[   19.433539]  kasan_report+0xf0/0x170\n[   19.435019]  ? _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[   19.436709]  _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[   19.438379]  ? __pfx_sched_clock_cpu+0x10/0x10\n[   19.439910]  isst_if_cpu_online+0x406/0x58f [isst_if_common]\n[   19.441573]  ? __pfx_isst_if_cpu_online+0x10/0x10 [isst_if_common]\n[   19.443263]  ? ttwu_queue_wakelist+0x2c1/0x360\n[   19.444797]  cpuhp_invoke_callback+0x221/0xec0\n[   19.446337]  cpuhp_thread_fun+0x21b/0x610\n[   19.447814]  ? __pfx_cpuhp_thread_fun+0x10/0x10\n[   19.449354]  smpboot_thread_fn+0x2e7/0x6e0\n[   19.450859]  ? __pfx_smpboot_thread_fn+0x10/0x10\n[   19.452405]  kthread+0x29c/0x350\n[   19.453817]  ? __pfx_kthread+0x10/0x10\n[   19.455253]  ret_from_fork+0x31/0x70\n[   19.456685]  ? __pfx_kthread+0x10/0x10\n[   19.458114]  ret_from_fork_asm+0x1a/0x30\n[   19.459573]  \u003c/TASK\u003e\n[   19.460853]\n[   19.462055] Allocated by task 1198:\n[   19.463410]  kasan_save_stack+0x30/0x50\n[   19.464788]  kasan_save_track+0x14/0x30\n[   19.466139]  __kasan_kmalloc+0xaa/0xb0\n[   19.467465]  __kmalloc+0x1cd/0x470\n[   19.468748]  isst_if_cdev_register+0x1da/0x350 [isst_if_common]\n[   19.470233]  isst_if_mbox_init+0x108/0xff0 [isst_if_mbox_msr]\n[   19.471670]  do_one_initcall+0xa4/0x380\n[   19.472903]  do_init_module+0x238/0x760\n[   19.474105]  load_module+0x5239/0x6f00\n[   19.475285]  init_module_from_file+0xd1/0x130\n[   19.476506]  idempotent_init_module+0x23b/0x650\n[   19.477725]  __x64_sys_finit_module+0xbe/0x130\n[   19.476506]  idempotent_init_module+0x23b/0x650\n[   19.477725]  __x64_sys_finit_module+0xbe/0x130\n[   19.478920]  do_syscall_64+0x82/0x160\n[   19.480036]  entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[   19.481292]\n[   19.482205] The buggy address belongs to the object at ffff888829e65000\n which belongs to the cache kmalloc-512 of size 512\n[   19.484818] The buggy address is located 0 bytes to the right of\n allocated 512-byte region [ffff888829e65000, ffff888829e65200)\n[   19.487447]\n[   19.488328] The buggy address belongs to the physical page:\n[   19.489569] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888829e60c00 pfn:0x829e60\n[   19.491140] head: order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0\n[   19.492466] anon flags: 0x57ffffc0000840(slab|head|node=1|zone=2|lastcpupid=0x1fffff)\n[   19.493914] page_type: 0xffffffff()\n[   19.494988] raw: 0057ffffc0000840 ffff88810004cc80 0000000000000000 0000000000000001\n[   19.496451] raw: ffff888829e60c00 0000000080200018 00000001ffffffff 0000000000000000\n[   19.497906] head: 0057ffffc0000840 ffff88810004cc80 0000000000000000 0000000000000001\n[   19.499379] head: ffff888829e60c00 0000000080200018 00000001ffffffff 0000000000000000\n[   19.500844] head: 0057ffffc0000003 ffffea0020a79801 ffffea0020a79848 00000000ffffffff\n[   19.502316] head: 0000000800000000 0000000000000000 00000000ffffffff 0000000000000000\n[   19.503784] page dumped because: k\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49886",
          "url": "https://www.suse.com/security/cve/CVE-2024-49886"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232196 for CVE-2024-49886",
          "url": "https://bugzilla.suse.com/1232196"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49886"
    },
    {
      "cve": "CVE-2024-49890",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49890"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: ensure the fw_info is not null before using it\n\nThis resolves the dereference null return value warning\nreported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49890",
          "url": "https://www.suse.com/security/cve/CVE-2024-49890"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232217 for CVE-2024-49890",
          "url": "https://bugzilla.suse.com/1232217"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49890"
    },
    {
      "cve": "CVE-2024-49892",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49892"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Initialize get_bytes_per_element\u0027s default to 1\n\nVariables, used as denominators and maybe not assigned to other values,\nshould not be 0. bytes_per_element_y \u0026 bytes_per_element_c are\ninitialized by get_bytes_per_element() which should never return 0.\n\nThis fixes 10 DIVIDE_BY_ZERO issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49892",
          "url": "https://www.suse.com/security/cve/CVE-2024-49892"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232220 for CVE-2024-49892",
          "url": "https://bugzilla.suse.com/1232220"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49892"
    },
    {
      "cve": "CVE-2024-49894",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49894"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index out of bounds in degamma hardware format translation\n\nFixes index out of bounds issue in\n`cm_helper_translate_curve_to_degamma_hw_format` function. The issue\ncould occur when the index \u0027i\u0027 exceeds the number of transfer function\npoints (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds the function returns\nfalse to indicate an error.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:594 cm_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:595 cm_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:596 cm_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49894",
          "url": "https://www.suse.com/security/cve/CVE-2024-49894"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232354 for CVE-2024-49894",
          "url": "https://bugzilla.suse.com/1232354"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49894"
    },
    {
      "cve": "CVE-2024-49895",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49895"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation\n\nThis commit addresses a potential index out of bounds issue in the\n`cm3_helper_translate_curve_to_degamma_hw_format` function in the DCN30\ncolor  management module. The issue could occur when the index \u0027i\u0027\nexceeds the  number of transfer function points (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds, the function returns\nfalse to indicate an error.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:338 cm3_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:339 cm3_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:340 cm3_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49895",
          "url": "https://www.suse.com/security/cve/CVE-2024-49895"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232352 for CVE-2024-49895",
          "url": "https://bugzilla.suse.com/1232352"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-49895"
    },
    {
      "cve": "CVE-2024-49896",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49896"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check stream before comparing them\n\n[WHAT \u0026 HOW]\namdgpu_dm can pass a null stream to dc_is_stream_unchanged. It is\nnecessary to check for null before dereferencing them.\n\nThis fixes 1 FORWARD_NULL issue reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49896",
          "url": "https://www.suse.com/security/cve/CVE-2024-49896"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232221 for CVE-2024-49896",
          "url": "https://bugzilla.suse.com/1232221"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49896"
    },
    {
      "cve": "CVE-2024-49897",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49897"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check phantom_stream before it is used\n\ndcn32_enable_phantom_stream can return null, so returned value\nmust be checked before used.\n\nThis fixes 1 NULL_RETURNS issue reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49897",
          "url": "https://www.suse.com/security/cve/CVE-2024-49897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232355 for CVE-2024-49897",
          "url": "https://bugzilla.suse.com/1232355"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49897"
    },
    {
      "cve": "CVE-2024-49899",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49899"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Initialize denominators\u0027 default to 1\n\n[WHAT \u0026 HOW]\nVariables used as denominators and maybe not assigned to other values,\nshould not be 0. Change their default to 1 so they are never 0.\n\nThis fixes 10 DIVIDE_BY_ZERO issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49899",
          "url": "https://www.suse.com/security/cve/CVE-2024-49899"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232358 for CVE-2024-49899",
          "url": "https://bugzilla.suse.com/1232358"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49899"
    },
    {
      "cve": "CVE-2024-49901",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49901"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/adreno: Assign msm_gpu-\u003epdev earlier to avoid nullptrs\n\nThere are some cases, such as the one uncovered by Commit 46d4efcccc68\n(\"drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting fails\")\nwhere\n\nmsm_gpu_cleanup() : platform_set_drvdata(gpu-\u003epdev, NULL);\n\nis called on gpu-\u003epdev == NULL, as the GPU device has not been fully\ninitialized yet.\n\nTurns out that there\u0027s more than just the aforementioned path that\ncauses this to happen (e.g. the case when there\u0027s speedbin data in the\ncatalog, but opp-supported-hw is missing in DT).\n\nAssigning msm_gpu-\u003epdev earlier seems like the least painful solution\nto this, therefore do so.\n\nPatchwork: https://patchwork.freedesktop.org/patch/602742/",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49901",
          "url": "https://www.suse.com/security/cve/CVE-2024-49901"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232305 for CVE-2024-49901",
          "url": "https://bugzilla.suse.com/1232305"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49901"
    },
    {
      "cve": "CVE-2024-49906",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49906"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointer before try to access it\n\n[why \u0026 how]\nChange the order of the pipe_ctx-\u003eplane_state check to ensure that\nplane_state is not null before accessing it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49906",
          "url": "https://www.suse.com/security/cve/CVE-2024-49906"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232332 for CVE-2024-49906",
          "url": "https://bugzilla.suse.com/1232332"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49906"
    },
    {
      "cve": "CVE-2024-49908",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49908"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for \u0027afb\u0027 in amdgpu_dm_update_cursor (v2)\n\nThis commit adds a null check for the \u0027afb\u0027 variable in the\namdgpu_dm_update_cursor function. Previously, \u0027afb\u0027 was assumed to be\nnull at line 8388, but was used later in the code without a null check.\nThis could potentially lead to a null pointer dereference.\n\nChanges since v1:\n- Moved the null check for \u0027afb\u0027 to the line where \u0027afb\u0027 is used. (Alex)\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/../display/amdgpu_dm/amdgpu_dm.c:8433 amdgpu_dm_update_cursor()\n\terror: we previously assumed \u0027afb\u0027 could be null (see line 8388)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49908",
          "url": "https://www.suse.com/security/cve/CVE-2024-49908"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232335 for CVE-2024-49908",
          "url": "https://bugzilla.suse.com/1232335"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49908"
    },
    {
      "cve": "CVE-2024-49909",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49909"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the dcn32_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for null, but then it was being\ndereferenced without any null check. This could lead to a null pointer\ndereference if set_output_gamma is null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a null check for set_output_gamma\nbefore the call to set_output_gamma.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49909",
          "url": "https://www.suse.com/security/cve/CVE-2024-49909"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232337 for CVE-2024-49909",
          "url": "https://bugzilla.suse.com/1232337"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49909"
    },
    {
      "cve": "CVE-2024-49911",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49911"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the dcn20_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for null at line 1030, but then it\nwas being dereferenced without any null check at line 1048. This could\npotentially lead to a null pointer dereference error if set_output_gamma\nis null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a null check for set_output_gamma\nbefore the call to set_output_gamma at line 1048.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49911",
          "url": "https://www.suse.com/security/cve/CVE-2024-49911"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232366 for CVE-2024-49911",
          "url": "https://bugzilla.suse.com/1232366"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49911"
    },
    {
      "cve": "CVE-2024-49912",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49912"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Handle null \u0027stream_status\u0027 in \u0027planes_changed_for_existing_stream\u0027\n\nThis commit adds a null check for \u0027stream_status\u0027 in the function\n\u0027planes_changed_for_existing_stream\u0027. Previously, the code assumed\n\u0027stream_status\u0027 could be null, but did not handle the case where it was\nactually null. This could lead to a null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/core/dc_resource.c:3784 planes_changed_for_existing_stream() error: we previously assumed \u0027stream_status\u0027 could be null (see line 3774)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49912",
          "url": "https://www.suse.com/security/cve/CVE-2024-49912"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232367 for CVE-2024-49912",
          "url": "https://bugzilla.suse.com/1232367"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49912"
    },
    {
      "cve": "CVE-2024-49913",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49913"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream\n\nThis commit addresses a null pointer dereference issue in the\n`commit_planes_for_stream` function at line 4140. The issue could occur\nwhen `top_pipe_to_program` is null.\n\nThe fix adds a check to ensure `top_pipe_to_program` is not null before\naccessing its stream_res. This prevents a null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/core/dc.c:4140 commit_planes_for_stream() error: we previously assumed \u0027top_pipe_to_program\u0027 could be null (see line 3906)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49913",
          "url": "https://www.suse.com/security/cve/CVE-2024-49913"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232307 for CVE-2024-49913",
          "url": "https://bugzilla.suse.com/1232307"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49913"
    },
    {
      "cve": "CVE-2024-49914",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49914"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\n\nThis commit addresses a null pointer dereference issue in the\n`dcn20_program_pipe` function. The issue could occur when\n`pipe_ctx-\u003eplane_state` is null.\n\nThe fix adds a check to ensure `pipe_ctx-\u003eplane_state` is not null\nbefore accessing. This prevents a null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn20/dcn20_hwseq.c:1925 dcn20_program_pipe() error: we previously assumed \u0027pipe_ctx-\u003eplane_state\u0027 could be null (see line 1877)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49914",
          "url": "https://www.suse.com/security/cve/CVE-2024-49914"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232369 for CVE-2024-49914",
          "url": "https://bugzilla.suse.com/1232369"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49914"
    },
    {
      "cve": "CVE-2024-49917",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49917"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr and clk_mgr-\u003efuncs in dcn30_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn30_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` or\n`dc-\u003eclk_mgr-\u003efuncs` is null.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` and `dc-\u003eclk_mgr-\u003efuncs` is\nnot null before accessing its functions. This prevents a potential null\npointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:789 dcn30_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 628)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49917",
          "url": "https://www.suse.com/security/cve/CVE-2024-49917"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231965 for CVE-2024-49917",
          "url": "https://bugzilla.suse.com/1231965"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49917"
    },
    {
      "cve": "CVE-2024-49918",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49918"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_acquire_idle_pipe_for_head_pipe_in_layer` function. The issue\ncould occur when `head_pipe` is null.\n\nThe fix adds a check to ensure `head_pipe` is not null before asserting\nit. If `head_pipe` is null, the function returns NULL to prevent a\npotential null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn32/dcn32_resource.c:2690 dcn32_acquire_idle_pipe_for_head_pipe_in_layer() error: we previously assumed \u0027head_pipe\u0027 could be null (see line 2681)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49918",
          "url": "https://www.suse.com/security/cve/CVE-2024-49918"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231967 for CVE-2024-49918",
          "url": "https://bugzilla.suse.com/1231967"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49918"
    },
    {
      "cve": "CVE-2024-49919",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49919"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn201_acquire_free_pipe_for_layer` function. The issue could occur\nwhen `head_pipe` is null.\n\nThe fix adds a check to ensure `head_pipe` is not null before asserting\nit. If `head_pipe` is null, the function returns NULL to prevent a\npotential null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn201/dcn201_resource.c:1016 dcn201_acquire_free_pipe_for_layer() error: we previously assumed \u0027head_pipe\u0027 could be null (see line 1010)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49919",
          "url": "https://www.suse.com/security/cve/CVE-2024-49919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231968 for CVE-2024-49919",
          "url": "https://bugzilla.suse.com/1231968"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49919"
    },
    {
      "cve": "CVE-2024-49920",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49920"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before multiple uses\n\n[WHAT \u0026 HOW]\nPoniters, such as stream_enc and dc-\u003ebw_vbios, are null checked previously\nin the same function, so Coverity warns \"implies that stream_enc and\ndc-\u003ebw_vbios might be null\". They are used multiple times in the\nsubsequent code and need to be checked.\n\nThis fixes 10 FORWARD_NULL issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49920",
          "url": "https://www.suse.com/security/cve/CVE-2024-49920"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232313 for CVE-2024-49920",
          "url": "https://bugzilla.suse.com/1232313"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49920"
    },
    {
      "cve": "CVE-2024-49922",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49922"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before using them\n\n[WHAT \u0026 HOW]\nThese pointers are null checked previously in the same function,\nindicating they might be null as reported by Coverity. As a result,\nthey need to be checked when used again.\n\nThis fixes 3 FORWARD_NULL issue reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49922",
          "url": "https://www.suse.com/security/cve/CVE-2024-49922"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232374 for CVE-2024-49922",
          "url": "https://bugzilla.suse.com/1232374"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49922"
    },
    {
      "cve": "CVE-2024-49923",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49923"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags\n\n[WHAT \u0026 HOW]\n\"dcn20_validate_apply_pipe_split_flags\" dereferences merge, and thus it\ncannot be a null pointer. Let\u0027s pass a valid pointer to avoid null\ndereference.\n\nThis fixes 2 FORWARD_NULL issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49923",
          "url": "https://www.suse.com/security/cve/CVE-2024-49923"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232361 for CVE-2024-49923",
          "url": "https://bugzilla.suse.com/1232361"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49923"
    },
    {
      "cve": "CVE-2024-49929",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49929"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: avoid NULL pointer dereference\n\niwl_mvm_tx_skb_sta() and iwl_mvm_tx_mpdu() verify that the mvmvsta\npointer is not NULL.\nIt retrieves this pointer using iwl_mvm_sta_from_mac80211, which is\ndereferencing the ieee80211_sta pointer.\nIf sta is NULL, iwl_mvm_sta_from_mac80211 will dereference a NULL\npointer.\nFix this by checking the sta pointer before retrieving the mvmsta\nfrom it. If sta is not NULL, then mvmsta isn\u0027t either.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49929",
          "url": "https://www.suse.com/security/cve/CVE-2024-49929"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232253 for CVE-2024-49929",
          "url": "https://bugzilla.suse.com/1232253"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49929"
    },
    {
      "cve": "CVE-2024-49930",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49930"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix array out-of-bound access in SoC stats\n\nCurrently, the ath11k_soc_dp_stats::hal_reo_error array is defined with a\nmaximum size of DP_REO_DST_RING_MAX. However, the ath11k_dp_process_rx()\nfunction access ath11k_soc_dp_stats::hal_reo_error using the REO\ndestination SRNG ring ID, which is incorrect. SRNG ring ID differ from\nnormal ring ID, and this usage leads to out-of-bounds array access. To fix\nthis issue, modify ath11k_dp_process_rx() to use the normal ring ID\ndirectly instead of the SRNG ring ID to avoid out-of-bounds array access.\n\nTested-on: QCN9074 hw1.0 PCI WLAN.HK.2.7.0.1-01744-QCAHKSWPL_SILICONZ-1",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49930",
          "url": "https://www.suse.com/security/cve/CVE-2024-49930"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232260 for CVE-2024-49930",
          "url": "https://bugzilla.suse.com/1232260"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232261 for CVE-2024-49930",
          "url": "https://bugzilla.suse.com/1232261"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49930"
    },
    {
      "cve": "CVE-2024-49933",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49933"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk_iocost: fix more out of bound shifts\n\nRecently running UBSAN caught few out of bound shifts in the\nioc_forgive_debts() function:\n\nUBSAN: shift-out-of-bounds in block/blk-iocost.c:2142:38\nshift exponent 80 is too large for 64-bit type \u0027u64\u0027 (aka \u0027unsigned long\nlong\u0027)\n...\nUBSAN: shift-out-of-bounds in block/blk-iocost.c:2144:30\nshift exponent 80 is too large for 64-bit type \u0027u64\u0027 (aka \u0027unsigned long\nlong\u0027)\n...\nCall Trace:\n\u003cIRQ\u003e\ndump_stack_lvl+0xca/0x130\n__ubsan_handle_shift_out_of_bounds+0x22c/0x280\n? __lock_acquire+0x6441/0x7c10\nioc_timer_fn+0x6cec/0x7750\n? blk_iocost_init+0x720/0x720\n? call_timer_fn+0x5d/0x470\ncall_timer_fn+0xfa/0x470\n? blk_iocost_init+0x720/0x720\n__run_timer_base+0x519/0x700\n...\n\nActual impact of this issue was not identified but I propose to fix the\nundefined behaviour.\nThe proposed fix to prevent those out of bound shifts consist of\nprecalculating exponent before using it the shift operations by taking\nmin value from the actual exponent and maximum possible number of bits.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49933",
          "url": "https://www.suse.com/security/cve/CVE-2024-49933"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232368 for CVE-2024-49933",
          "url": "https://bugzilla.suse.com/1232368"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49933"
    },
    {
      "cve": "CVE-2024-49936",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49936"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/xen-netback: prevent UAF in xenvif_flush_hash()\n\nDuring the list_for_each_entry_rcu iteration call of xenvif_flush_hash,\nkfree_rcu does not exist inside the rcu read critical section, so if\nkfree_rcu is called when the rcu grace period ends during the iteration,\nUAF occurs when accessing head-\u003enext after the entry becomes free.\n\nTherefore, to solve this, you need to change it to list_for_each_entry_safe.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49936",
          "url": "https://www.suse.com/security/cve/CVE-2024-49936"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232424 for CVE-2024-49936",
          "url": "https://bugzilla.suse.com/1232424"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232426 for CVE-2024-49936",
          "url": "https://bugzilla.suse.com/1232426"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49936"
    },
    {
      "cve": "CVE-2024-49939",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49939"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: avoid to add interface to list twice when SER\n\nIf SER L2 occurs during the WoWLAN resume flow, the add interface flow\nis triggered by ieee80211_reconfig(). However, due to\nrtw89_wow_resume() return failure, it will cause the add interface flow\nto be executed again, resulting in a double add list and causing a kernel\npanic. Therefore, we have added a check to prevent double adding of the\nlist.\n\nlist_add double add: new=ffff99d6992e2010, prev=ffff99d6992e2010, next=ffff99d695302628.\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:37!\ninvalid opcode: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 0 PID: 9 Comm: kworker/0:1 Tainted: G        W  O       6.6.30-02659-gc18865c4dfbd #1 770df2933251a0e3c888ba69d1053a817a6376a7\nHardware name: HP Grunt/Grunt, BIOS Google_Grunt.11031.169.0 06/24/2021\nWorkqueue: events_freezable ieee80211_restart_work [mac80211]\nRIP: 0010:__list_add_valid_or_report+0x5e/0xb0\nCode: c7 74 18 48 39 ce 74 13 b0 01 59 5a 5e 5f 41 58 41 59 41 5a 5d e9 e2 d6 03 00 cc 48 c7 c7 8d 4f 17 83 48 89 c2 e8 02 c0 00 00 \u003c0f\u003e 0b 48 c7 c7 aa 8c 1c 83 e8 f4 bf 00 00 0f 0b 48 c7 c7 c8 bc 12\nRSP: 0018:ffffa91b8007bc50 EFLAGS: 00010246\nRAX: 0000000000000058 RBX: ffff99d6992e0900 RCX: a014d76c70ef3900\nRDX: ffffa91b8007bae8 RSI: 00000000ffffdfff RDI: 0000000000000001\nRBP: ffffa91b8007bc88 R08: 0000000000000000 R09: ffffa91b8007bae0\nR10: 00000000ffffdfff R11: ffffffff83a79800 R12: ffff99d695302060\nR13: ffff99d695300900 R14: ffff99d6992e1be0 R15: ffff99d6992e2010\nFS:  0000000000000000(0000) GS:ffff99d6aac00000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000078fbdba43480 CR3: 000000010e464000 CR4: 00000000001506f0\nCall Trace:\n \u003cTASK\u003e\n ? __die_body+0x1f/0x70\n ? die+0x3d/0x60\n ? do_trap+0xa4/0x110\n ? __list_add_valid_or_report+0x5e/0xb0\n ? do_error_trap+0x6d/0x90\n ? __list_add_valid_or_report+0x5e/0xb0\n ? handle_invalid_op+0x30/0x40\n ? __list_add_valid_or_report+0x5e/0xb0\n ? exc_invalid_op+0x3c/0x50\n ? asm_exc_invalid_op+0x16/0x20\n ? __list_add_valid_or_report+0x5e/0xb0\n rtw89_ops_add_interface+0x309/0x310 [rtw89_core 7c32b1ee6854761c0321027c8a58c5160e41f48f]\n drv_add_interface+0x5c/0x130 [mac80211 83e989e6e616bd5b4b8a2b0a9f9352a2c385a3bc]\n ieee80211_reconfig+0x241/0x13d0 [mac80211 83e989e6e616bd5b4b8a2b0a9f9352a2c385a3bc]\n ? finish_wait+0x3e/0x90\n ? synchronize_rcu_expedited+0x174/0x260\n ? sync_rcu_exp_done_unlocked+0x50/0x50\n ? wake_bit_function+0x40/0x40\n ieee80211_restart_work+0xf0/0x140 [mac80211 83e989e6e616bd5b4b8a2b0a9f9352a2c385a3bc]\n process_scheduled_works+0x1e5/0x480\n worker_thread+0xea/0x1e0\n kthread+0xdb/0x110\n ? move_linked_works+0x90/0x90\n ? kthread_associate_blkcg+0xa0/0xa0\n ret_from_fork+0x3b/0x50\n ? kthread_associate_blkcg+0xa0/0xa0\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e\nModules linked in: dm_integrity async_xor xor async_tx lz4 lz4_compress zstd zstd_compress zram zsmalloc rfcomm cmac uinput algif_hash algif_skcipher af_alg btusb btrtl iio_trig_hrtimer industrialio_sw_trigger btmtk industrialio_configfs btbcm btintel uvcvideo videobuf2_vmalloc iio_trig_sysfs videobuf2_memops videobuf2_v4l2 videobuf2_common uvc snd_hda_codec_hdmi veth snd_hda_intel snd_intel_dspcfg acpi_als snd_hda_codec industrialio_triggered_buffer kfifo_buf snd_hwdep industrialio i2c_piix4 snd_hda_core designware_i2s ip6table_nat snd_soc_max98357a xt_MASQUERADE xt_cgroup snd_soc_acp_rt5682_mach fuse rtw89_8922ae(O) rtw89_8922a(O) rtw89_pci(O) rtw89_core(O) 8021q mac80211(O) bluetooth ecdh_generic ecc cfg80211 r8152 mii joydev\ngsmi: Log Shutdown Reason 0x03\n---[ end trace 0000000000000000 ]---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49939",
          "url": "https://www.suse.com/security/cve/CVE-2024-49939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232381 for CVE-2024-49939",
          "url": "https://bugzilla.suse.com/1232381"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49939"
    },
    {
      "cve": "CVE-2024-49946",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49946"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nppp: do not assume bh is held in ppp_channel_bridge_input()\n\nNetworking receive path is usually handled from BH handler.\nHowever, some protocols need to acquire the socket lock, and\npackets might be stored in the socket backlog is the socket was\nowned by a user process.\n\nIn this case, release_sock(), __release_sock(), and sk_backlog_rcv()\nmight call the sk-\u003esk_backlog_rcv() handler in process context.\n\nsybot caught ppp was not considering this case in\nppp_channel_bridge_input() :\n\nWARNING: inconsistent lock state\n6.11.0-rc7-syzkaller-g5f5673607153 #0 Not tainted\n--------------------------------\ninconsistent {SOFTIRQ-ON-W} -\u003e {IN-SOFTIRQ-W} usage.\nksoftirqd/1/24 [HC0[0]:SC1[1]:HE1:SE0] takes:\n ffff0000db7f11e0 (\u0026pch-\u003edownl){+.?.}-{2:2}, at: spin_lock include/linux/spinlock.h:351 [inline]\n ffff0000db7f11e0 (\u0026pch-\u003edownl){+.?.}-{2:2}, at: ppp_channel_bridge_input drivers/net/ppp/ppp_generic.c:2272 [inline]\n ffff0000db7f11e0 (\u0026pch-\u003edownl){+.?.}-{2:2}, at: ppp_input+0x16c/0x854 drivers/net/ppp/ppp_generic.c:2304\n{SOFTIRQ-ON-W} state was registered at:\n   lock_acquire+0x240/0x728 kernel/locking/lockdep.c:5759\n   __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline]\n   _raw_spin_lock+0x48/0x60 kernel/locking/spinlock.c:154\n   spin_lock include/linux/spinlock.h:351 [inline]\n   ppp_channel_bridge_input drivers/net/ppp/ppp_generic.c:2272 [inline]\n   ppp_input+0x16c/0x854 drivers/net/ppp/ppp_generic.c:2304\n   pppoe_rcv_core+0xfc/0x314 drivers/net/ppp/pppoe.c:379\n   sk_backlog_rcv include/net/sock.h:1111 [inline]\n   __release_sock+0x1a8/0x3d8 net/core/sock.c:3004\n   release_sock+0x68/0x1b8 net/core/sock.c:3558\n   pppoe_sendmsg+0xc8/0x5d8 drivers/net/ppp/pppoe.c:903\n   sock_sendmsg_nosec net/socket.c:730 [inline]\n   __sock_sendmsg net/socket.c:745 [inline]\n   __sys_sendto+0x374/0x4f4 net/socket.c:2204\n   __do_sys_sendto net/socket.c:2216 [inline]\n   __se_sys_sendto net/socket.c:2212 [inline]\n   __arm64_sys_sendto+0xd8/0xf8 net/socket.c:2212\n   __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n   invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49\n   el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132\n   do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151\n   el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:712\n   el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n   el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\nirq event stamp: 282914\n hardirqs last  enabled at (282914): [\u003cffff80008b42e30c\u003e] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline]\n hardirqs last  enabled at (282914): [\u003cffff80008b42e30c\u003e] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194\n hardirqs last disabled at (282913): [\u003cffff80008b42e13c\u003e] __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:108 [inline]\n hardirqs last disabled at (282913): [\u003cffff80008b42e13c\u003e] _raw_spin_lock_irqsave+0x2c/0x7c kernel/locking/spinlock.c:162\n softirqs last  enabled at (282904): [\u003cffff8000801f8e88\u003e] softirq_handle_end kernel/softirq.c:400 [inline]\n softirqs last  enabled at (282904): [\u003cffff8000801f8e88\u003e] handle_softirqs+0xa3c/0xbfc kernel/softirq.c:582\n softirqs last disabled at (282909): [\u003cffff8000801fbdf8\u003e] run_ksoftirqd+0x70/0x158 kernel/softirq.c:928\n\nother info that might help us debug this:\n Possible unsafe locking scenario:\n\n       CPU0\n       ----\n  lock(\u0026pch-\u003edownl);\n  \u003cInterrupt\u003e\n    lock(\u0026pch-\u003edownl);\n\n *** DEADLOCK ***\n\n1 lock held by ksoftirqd/1/24:\n  #0: ffff80008f74dfa0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x10/0x4c include/linux/rcupdate.h:325\n\nstack backtrace:\nCPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.11.0-rc7-syzkaller-g5f5673607153 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall trace:\n  dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:319\n  show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:326\n  __dump_sta\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49946",
          "url": "https://www.suse.com/security/cve/CVE-2024-49946"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232164 for CVE-2024-49946",
          "url": "https://bugzilla.suse.com/1232164"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49946"
    },
    {
      "cve": "CVE-2024-49949",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49949"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: avoid potential underflow in qdisc_pkt_len_init() with UFO\n\nAfter commit 7c6d2ecbda83 (\"net: be more gentle about silly gso\nrequests coming from user\") virtio_net_hdr_to_skb() had sanity check\nto detect malicious attempts from user space to cook a bad GSO packet.\n\nThen commit cf9acc90c80ec (\"net: virtio_net_hdr_to_skb: count\ntransport header in UFO\") while fixing one issue, allowed user space\nto cook a GSO packet with the following characteristic :\n\nIPv4 SKB_GSO_UDP, gso_size=3, skb-\u003elen = 28.\n\nWhen this packet arrives in qdisc_pkt_len_init(), we end up\nwith hdr_len = 28 (IPv4 header + UDP header), matching skb-\u003elen\n\nThen the following sets gso_segs to 0 :\n\ngso_segs = DIV_ROUND_UP(skb-\u003elen - hdr_len,\n                        shinfo-\u003egso_size);\n\nThen later we set qdisc_skb_cb(skb)-\u003epkt_len to back to zero :/\n\nqdisc_skb_cb(skb)-\u003epkt_len += (gso_segs - 1) * hdr_len;\n\nThis leads to the following crash in fq_codel [1]\n\nqdisc_pkt_len_init() is best effort, we only want an estimation\nof the bytes sent on the wire, not crashing the kernel.\n\nThis patch is fixing this particular issue, a following one\nadds more sanity checks for another potential bug.\n\n[1]\n[   70.724101] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[   70.724561] #PF: supervisor read access in kernel mode\n[   70.724561] #PF: error_code(0x0000) - not-present page\n[   70.724561] PGD 10ac61067 P4D 10ac61067 PUD 107ee2067 PMD 0\n[   70.724561] Oops: Oops: 0000 [#1] SMP NOPTI\n[   70.724561] CPU: 11 UID: 0 PID: 2163 Comm: b358537762 Not tainted 6.11.0-virtme #991\n[   70.724561] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[   70.724561] RIP: 0010:fq_codel_enqueue (net/sched/sch_fq_codel.c:120 net/sched/sch_fq_codel.c:168 net/sched/sch_fq_codel.c:230) sch_fq_codel\n[ 70.724561] Code: 24 08 49 c1 e1 06 44 89 7c 24 18 45 31 ed 45 31 c0 31 ff 89 44 24 14 4c 03 8b 90 01 00 00 eb 04 39 ca 73 37 4d 8b 39 83 c7 01 \u003c49\u003e 8b 17 49 89 11 41 8b 57 28 45 8b 5f 34 49 c7 07 00 00 00 00 49\nAll code\n========\n   0:\t24 08                \tand    $0x8,%al\n   2:\t49 c1 e1 06          \tshl    $0x6,%r9\n   6:\t44 89 7c 24 18       \tmov    %r15d,0x18(%rsp)\n   b:\t45 31 ed             \txor    %r13d,%r13d\n   e:\t45 31 c0             \txor    %r8d,%r8d\n  11:\t31 ff                \txor    %edi,%edi\n  13:\t89 44 24 14          \tmov    %eax,0x14(%rsp)\n  17:\t4c 03 8b 90 01 00 00 \tadd    0x190(%rbx),%r9\n  1e:\teb 04                \tjmp    0x24\n  20:\t39 ca                \tcmp    %ecx,%edx\n  22:\t73 37                \tjae    0x5b\n  24:\t4d 8b 39             \tmov    (%r9),%r15\n  27:\t83 c7 01             \tadd    $0x1,%edi\n  2a:*\t49 8b 17             \tmov    (%r15),%rdx\t\t\u003c-- trapping instruction\n  2d:\t49 89 11             \tmov    %rdx,(%r9)\n  30:\t41 8b 57 28          \tmov    0x28(%r15),%edx\n  34:\t45 8b 5f 34          \tmov    0x34(%r15),%r11d\n  38:\t49 c7 07 00 00 00 00 \tmovq   $0x0,(%r15)\n  3f:\t49                   \trex.WB\n\nCode starting with the faulting instruction\n===========================================\n   0:\t49 8b 17             \tmov    (%r15),%rdx\n   3:\t49 89 11             \tmov    %rdx,(%r9)\n   6:\t41 8b 57 28          \tmov    0x28(%r15),%edx\n   a:\t45 8b 5f 34          \tmov    0x34(%r15),%r11d\n   e:\t49 c7 07 00 00 00 00 \tmovq   $0x0,(%r15)\n  15:\t49                   \trex.WB\n[   70.724561] RSP: 0018:ffff95ae85e6fb90 EFLAGS: 00000202\n[   70.724561] RAX: 0000000002000000 RBX: ffff95ae841de000 RCX: 0000000000000000\n[   70.724561] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001\n[   70.724561] RBP: ffff95ae85e6fbf8 R08: 0000000000000000 R09: ffff95b710a30000\n[   70.724561] R10: 0000000000000000 R11: bdf289445ce31881 R12: ffff95ae85e6fc58\n[   70.724561] R13: 0000000000000000 R14: 0000000000000040 R15: 0000000000000000\n[   70.724561] FS:  000000002c5c1380(0000) GS:ffff95bd7fcc0000(0000) knlGS:0000000000000000\n[   70.724561] CS:  0010 DS: 0000 ES: 0000 C\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49949",
          "url": "https://www.suse.com/security/cve/CVE-2024-49949"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232160 for CVE-2024-49949",
          "url": "https://bugzilla.suse.com/1232160"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49949"
    },
    {
      "cve": "CVE-2024-49954",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49954"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstatic_call: Replace pointless WARN_ON() in static_call_module_notify()\n\nstatic_call_module_notify() triggers a WARN_ON(), when memory allocation\nfails in __static_call_add_module().\n\nThat\u0027s not really justified, because the failure case must be correctly\nhandled by the well known call chain and the error code is passed\nthrough to the initiating userspace application.\n\nA memory allocation fail is not a fatal problem, but the WARN_ON() takes\nthe machine out when panic_on_warn is set.\n\nReplace it with a pr_warn().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49954",
          "url": "https://www.suse.com/security/cve/CVE-2024-49954"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232155 for CVE-2024-49954",
          "url": "https://bugzilla.suse.com/1232155"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49954"
    },
    {
      "cve": "CVE-2024-49955",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49955"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: battery: Fix possible crash when unregistering a battery hook\n\nWhen a battery hook returns an error when adding a new battery, then\nthe battery hook is automatically unregistered.\nHowever the battery hook provider cannot know that, so it will later\ncall battery_hook_unregister() on the already unregistered battery\nhook, resulting in a crash.\n\nFix this by using the list head to mark already unregistered battery\nhooks as already being unregistered so that they can be ignored by\nbattery_hook_unregister().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49955",
          "url": "https://www.suse.com/security/cve/CVE-2024-49955"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232154 for CVE-2024-49955",
          "url": "https://bugzilla.suse.com/1232154"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49955"
    },
    {
      "cve": "CVE-2024-49958",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49958"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: reserve space for inline xattr before attaching reflink tree\n\nOne of our customers reported a crash and a corrupted ocfs2 filesystem. \nThe crash was due to the detection of corruption.  Upon troubleshooting,\nthe fsck -fn output showed the below corruption\n\n[EXTENT_LIST_FREE] Extent list in owner 33080590 claims 230 as the next free chain record,\nbut fsck believes the largest valid value is 227.  Clamp the next record value? n\n\nThe stat output from the debugfs.ocfs2 showed the following corruption\nwhere the \"Next Free Rec:\" had overshot the \"Count:\" in the root metadata\nblock.\n\n        Inode: 33080590   Mode: 0640   Generation: 2619713622 (0x9c25a856)\n        FS Generation: 904309833 (0x35e6ac49)\n        CRC32: 00000000   ECC: 0000\n        Type: Regular   Attr: 0x0   Flags: Valid\n        Dynamic Features: (0x16) HasXattr InlineXattr Refcounted\n        Extended Attributes Block: 0  Extended Attributes Inline Size: 256\n        User: 0 (root)   Group: 0 (root)   Size: 281320357888\n        Links: 1   Clusters: 141738\n        ctime: 0x66911b56 0x316edcb8 -- Fri Jul 12 06:02:30.829349048 2024\n        atime: 0x66911d6b 0x7f7a28d -- Fri Jul 12 06:11:23.133669517 2024\n        mtime: 0x66911b56 0x12ed75d7 -- Fri Jul 12 06:02:30.317552087 2024\n        dtime: 0x0 -- Wed Dec 31 17:00:00 1969\n        Refcount Block: 2777346\n        Last Extblk: 2886943   Orphan Slot: 0\n        Sub Alloc Slot: 0   Sub Alloc Bit: 14\n        Tree Depth: 1   Count: 227   Next Free Rec: 230\n        ## Offset        Clusters       Block#\n        0  0             2310           2776351\n        1  2310          2139           2777375\n        2  4449          1221           2778399\n        3  5670          731            2779423\n        4  6401          566            2780447\n        .......          ....           .......\n        .......          ....           .......\n\nThe issue was in the reflink workfow while reserving space for inline\nxattr.  The problematic function is ocfs2_reflink_xattr_inline().  By the\ntime this function is called the reflink tree is already recreated at the\ndestination inode from the source inode.  At this point, this function\nreserves space for inline xattrs at the destination inode without even\nchecking if there is space at the root metadata block.  It simply reduces\nthe l_count from 243 to 227 thereby making space of 256 bytes for inline\nxattr whereas the inode already has extents beyond this index (in this\ncase up to 230), thereby causing corruption.\n\nThe fix for this is to reserve space for inline metadata at the destination\ninode before the reflink tree gets recreated. The customer has verified the\nfix.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49958",
          "url": "https://www.suse.com/security/cve/CVE-2024-49958"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232151 for CVE-2024-49958",
          "url": "https://bugzilla.suse.com/1232151"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49958"
    },
    {
      "cve": "CVE-2024-49959",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49959"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error\n\nIn __jbd2_log_wait_for_space(), we might call jbd2_cleanup_journal_tail()\nto recover some journal space. But if an error occurs while executing\njbd2_cleanup_journal_tail() (e.g., an EIO), we don\u0027t stop waiting for free\nspace right away, we try other branches, and if j_committing_transaction\nis NULL (i.e., the tid is 0), we will get the following complain:\n\n============================================\nJBD2: I/O error when updating journal superblock for sdd-8.\n__jbd2_log_wait_for_space: needed 256 blocks and only had 217 space available\n__jbd2_log_wait_for_space: no way to get more journal space in sdd-8\n------------[ cut here ]------------\nWARNING: CPU: 2 PID: 139804 at fs/jbd2/checkpoint.c:109 __jbd2_log_wait_for_space+0x251/0x2e0\nModules linked in:\nCPU: 2 PID: 139804 Comm: kworker/u8:3 Not tainted 6.6.0+ #1\nRIP: 0010:__jbd2_log_wait_for_space+0x251/0x2e0\nCall Trace:\n \u003cTASK\u003e\n add_transaction_credits+0x5d1/0x5e0\n start_this_handle+0x1ef/0x6a0\n jbd2__journal_start+0x18b/0x340\n ext4_dirty_inode+0x5d/0xb0\n __mark_inode_dirty+0xe4/0x5d0\n generic_update_time+0x60/0x70\n[...]\n============================================\n\nSo only if jbd2_cleanup_journal_tail() returns 1, i.e., there is nothing to\nclean up at the moment, continue to try to reclaim free space in other ways.\n\nNote that this fix relies on commit 6f6a6fda2945 (\"jbd2: fix ocfs2 corrupt\nwhen updating journal superblock fails\") to make jbd2_cleanup_journal_tail\nreturn the correct error code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49959",
          "url": "https://www.suse.com/security/cve/CVE-2024-49959"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232149 for CVE-2024-49959",
          "url": "https://bugzilla.suse.com/1232149"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49959"
    },
    {
      "cve": "CVE-2024-49960",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49960"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix timer use-after-free on failed mount\n\nSyzbot has found an ODEBUG bug in ext4_fill_super\n\nThe del_timer_sync function cancels the s_err_report timer,\nwhich reminds about filesystem errors daily. We should\nguarantee the timer is no longer active before kfree(sbi).\n\nWhen filesystem mounting fails, the flow goes to failed_mount3,\nwhere an error occurs when ext4_stop_mmpd is called, causing\na read I/O failure. This triggers the ext4_handle_error function\nthat ultimately re-arms the timer,\nleaving the s_err_report timer active before kfree(sbi) is called.\n\nFix the issue by canceling the s_err_report timer after calling ext4_stop_mmpd.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49960",
          "url": "https://www.suse.com/security/cve/CVE-2024-49960"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232395 for CVE-2024-49960",
          "url": "https://bugzilla.suse.com/1232395"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232803 for CVE-2024-49960",
          "url": "https://bugzilla.suse.com/1232803"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49960"
    },
    {
      "cve": "CVE-2024-49962",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49962"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package()\n\nACPICA commit 4d4547cf13cca820ff7e0f859ba83e1a610b9fd0\n\nACPI_ALLOCATE_ZEROED() may fail, elements might be NULL and will cause\nNULL pointer dereference later.\n\n[ rjw: Subject and changelog edits ]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49962",
          "url": "https://www.suse.com/security/cve/CVE-2024-49962"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232314 for CVE-2024-49962",
          "url": "https://bugzilla.suse.com/1232314"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49962"
    },
    {
      "cve": "CVE-2024-49967",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49967"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49967",
          "url": "https://www.suse.com/security/cve/CVE-2024-49967"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232140 for CVE-2024-49967",
          "url": "https://bugzilla.suse.com/1232140"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49967"
    },
    {
      "cve": "CVE-2024-49969",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49969"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index out of bounds in DCN30 color transformation\n\nThis commit addresses a potential index out of bounds issue in the\n`cm3_helper_translate_curve_to_hw_format` function in the DCN30 color\nmanagement module. The issue could occur when the index \u0027i\u0027 exceeds the\nnumber of transfer function points (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds, the function returns\nfalse to indicate an error.\n\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:180 cm3_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:181 cm3_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:182 cm3_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49969",
          "url": "https://www.suse.com/security/cve/CVE-2024-49969"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232519 for CVE-2024-49969",
          "url": "https://bugzilla.suse.com/1232519"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232524 for CVE-2024-49969",
          "url": "https://bugzilla.suse.com/1232524"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49969"
    },
    {
      "cve": "CVE-2024-49973",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49973"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nr8169: add tally counter fields added with RTL8125\n\nRTL8125 added fields to the tally counter, what may result in the chip\ndma\u0027ing these new fields to unallocated memory. Therefore make sure\nthat the allocated memory area is big enough to hold all of the\ntally counter values, even if we use only parts of it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49973",
          "url": "https://www.suse.com/security/cve/CVE-2024-49973"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232105 for CVE-2024-49973",
          "url": "https://bugzilla.suse.com/1232105"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49973"
    },
    {
      "cve": "CVE-2024-49974",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49974"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Limit the number of concurrent async COPY operations\n\nNothing appears to limit the number of concurrent async COPY\noperations that clients can start. In addition, AFAICT each async\nCOPY can copy an unlimited number of 4MB chunks, so can run for a\nlong time. Thus IMO async COPY can become a DoS vector.\n\nAdd a restriction mechanism that bounds the number of concurrent\nbackground COPY operations. Start simple and try to be fair -- this\npatch implements a per-namespace limit.\n\nAn async COPY request that occurs while this limit is exceeded gets\nNFS4ERR_DELAY. The requesting client can choose to send the request\nagain after a delay or fall back to a traditional read/write style\ncopy.\n\nIf there is need to make the mechanism more sophisticated, we can\nvisit that in future patches.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49974",
          "url": "https://www.suse.com/security/cve/CVE-2024-49974"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232383 for CVE-2024-49974",
          "url": "https://bugzilla.suse.com/1232383"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232384 for CVE-2024-49974",
          "url": "https://bugzilla.suse.com/1232384"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49974"
    },
    {
      "cve": "CVE-2024-49975",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49975"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuprobes: fix kernel info leak via \"[uprobes]\" vma\n\nxol_add_vma() maps the uninitialized page allocated by __create_xol_area()\ninto userspace. On some architectures (x86) this memory is readable even\nwithout VM_READ, VM_EXEC results in the same pgprot_t as VM_EXEC|VM_READ,\nalthough this doesn\u0027t really matter, debugger can read this memory anyway.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49975",
          "url": "https://www.suse.com/security/cve/CVE-2024-49975"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232104 for CVE-2024-49975",
          "url": "https://bugzilla.suse.com/1232104"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49975"
    },
    {
      "cve": "CVE-2024-49982",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49982"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\naoe: fix the potential use-after-free problem in more places\n\nFor fixing CVE-2023-6270, f98364e92662 (\"aoe: fix the potential\nuse-after-free problem in aoecmd_cfg_pkts\") makes tx() calling dev_put()\ninstead of doing in aoecmd_cfg_pkts(). It avoids that the tx() runs\ninto use-after-free.\n\nThen Nicolai Stange found more places in aoe have potential use-after-free\nproblem with tx(). e.g. revalidate(), aoecmd_ata_rw(), resend(), probe()\nand aoecmd_cfg_rsp(). Those functions also use aoenet_xmit() to push\npacket to tx queue. So they should also use dev_hold() to increase the\nrefcnt of skb-\u003edev.\n\nOn the other hand, moving dev_put() to tx() causes that the refcnt of\nskb-\u003edev be reduced to a negative value, because corresponding\ndev_hold() are not called in revalidate(), aoecmd_ata_rw(), resend(),\nprobe(), and aoecmd_cfg_rsp(). This patch fixed this issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49982",
          "url": "https://www.suse.com/security/cve/CVE-2024-49982"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232097 for CVE-2024-49982",
          "url": "https://bugzilla.suse.com/1232097"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49982"
    },
    {
      "cve": "CVE-2024-49991",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49991"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer\n\nPass pointer reference to amdgpu_bo_unref to clear the correct pointer,\notherwise amdgpu_bo_unref clear the local variable, the original pointer\nnot set to NULL, this could cause use-after-free bug.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49991",
          "url": "https://www.suse.com/security/cve/CVE-2024-49991"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232282 for CVE-2024-49991",
          "url": "https://bugzilla.suse.com/1232282"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232284 for CVE-2024-49991",
          "url": "https://bugzilla.suse.com/1232284"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49991"
    },
    {
      "cve": "CVE-2024-49993",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49993"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49993",
          "url": "https://www.suse.com/security/cve/CVE-2024-49993"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232316 for CVE-2024-49993",
          "url": "https://bugzilla.suse.com/1232316"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 0,
            "baseSeverity": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-49993"
    },
    {
      "cve": "CVE-2024-49995",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49995"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49995",
          "url": "https://www.suse.com/security/cve/CVE-2024-49995"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232432 for CVE-2024-49995",
          "url": "https://bugzilla.suse.com/1232432"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232433 for CVE-2024-49995",
          "url": "https://bugzilla.suse.com/1232433"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 0,
            "baseSeverity": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49995"
    },
    {
      "cve": "CVE-2024-49996",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49996"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: Fix buffer overflow when parsing NFS reparse points\n\nReparseDataLength is sum of the InodeType size and DataBuffer size.\nSo to get DataBuffer size it is needed to subtract InodeType\u0027s size from\nReparseDataLength.\n\nFunction cifs_strndup_from_utf16() is currentlly accessing buf-\u003eDataBuffer\nat position after the end of the buffer because it does not subtract\nInodeType size from the length. Fix this problem and correctly subtract\nvariable len.\n\nMember InodeType is present only when reparse buffer is large enough. Check\nfor ReparseDataLength before accessing InodeType to prevent another invalid\nmemory access.\n\nMajor and minor rdev values are present also only when reparse buffer is\nlarge enough. Check for reparse buffer size before calling reparse_mkdev().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49996",
          "url": "https://www.suse.com/security/cve/CVE-2024-49996"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232089 for CVE-2024-49996",
          "url": "https://bugzilla.suse.com/1232089"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49996"
    },
    {
      "cve": "CVE-2024-50000",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50000"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc()\n\nIn mlx5e_tir_builder_alloc() kvzalloc() may return NULL\nwhich is dereferenced on the next line in a reference\nto the modify field.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50000",
          "url": "https://www.suse.com/security/cve/CVE-2024-50000"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232085 for CVE-2024-50000",
          "url": "https://bugzilla.suse.com/1232085"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50000"
    },
    {
      "cve": "CVE-2024-50001",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50001"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix error path in multi-packet WQE transmit\n\nRemove the erroneous unmap in case no DMA mapping was established\n\nThe multi-packet WQE transmit code attempts to obtain a DMA mapping for\nthe skb. This could fail, e.g. under memory pressure, when the IOMMU\ndriver just can\u0027t allocate more memory for page tables. While the code\ntries to handle this in the path below the err_unmap label it erroneously\nunmaps one entry from the sq\u0027s FIFO list of active mappings. Since the\ncurrent map attempt failed this unmap is removing some random DMA mapping\nthat might still be required. If the PCI function now presents that IOVA,\nthe IOMMU may assumes a rogue DMA access and e.g. on s390 puts the PCI\nfunction in error state.\n\nThe erroneous behavior was seen in a stress-test environment that created\nmemory pressure.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50001",
          "url": "https://www.suse.com/security/cve/CVE-2024-50001"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232084 for CVE-2024-50001",
          "url": "https://bugzilla.suse.com/1232084"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50001"
    },
    {
      "cve": "CVE-2024-50002",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50002"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstatic_call: Handle module init failure correctly in static_call_del_module()\n\nModule insertion invokes static_call_add_module() to initialize the static\ncalls in a module. static_call_add_module() invokes __static_call_init(),\nwhich allocates a struct static_call_mod to either encapsulate the built-in\nstatic call sites of the associated key into it so further modules can be\nadded or to append the module to the module chain.\n\nIf that allocation fails the function returns with an error code and the\nmodule core invokes static_call_del_module() to clean up eventually added\nstatic_call_mod entries.\n\nThis works correctly, when all keys used by the module were converted over\nto a module chain before the failure. If not then static_call_del_module()\ncauses a #GP as it blindly assumes that key::mods points to a valid struct\nstatic_call_mod.\n\nThe problem is that key::mods is not a individual struct member of struct\nstatic_call_key, it\u0027s part of a union to save space:\n\n        union {\n                /* bit 0: 0 = mods, 1 = sites */\n                unsigned long type;\n                struct static_call_mod *mods;\n                struct static_call_site *sites;\n\t};\n\nkey::sites is a pointer to the list of built-in usage sites of the static\ncall. The type of the pointer is differentiated by bit 0. A mods pointer\nhas the bit clear, the sites pointer has the bit set.\n\nAs static_call_del_module() blidly assumes that the pointer is a valid\nstatic_call_mod type, it fails to check for this failure case and\ndereferences the pointer to the list of built-in call sites, which is\nobviously bogus.\n\nCure it by checking whether the key has a sites or a mods pointer.\n\nIf it\u0027s a sites pointer then the key is not to be touched. As the sites are\nwalked in the same order as in __static_call_init() the site walk can be\nterminated because all subsequent sites have not been touched by the init\ncode due to the error exit.\n\nIf it was converted before the allocation fail, then the inner loop which\nsearches for a module match will find nothing.\n\nA fail in the second allocation in __static_call_init() is harmless and\ndoes not require special treatment. The first allocation succeeded and\nconverted the key to a module chain. That first entry has mod::mod == NULL\nand mod::next == NULL, so the inner loop of static_call_del_module() will\nneither find a module match nor a module chain. The next site in the walk\nwas either already converted, but can\u0027t match the module, or it will exit\nthe outer loop because it has a static_call_site pointer and not a\nstatic_call_mod pointer.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50002",
          "url": "https://www.suse.com/security/cve/CVE-2024-50002"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232083 for CVE-2024-50002",
          "url": "https://bugzilla.suse.com/1232083"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50002"
    },
    {
      "cve": "CVE-2024-50006",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50006"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix i_data_sem unlock order in ext4_ind_migrate()\n\nFuzzing reports a possible deadlock in jbd2_log_wait_commit.\n\nThis issue is triggered when an EXT4_IOC_MIGRATE ioctl is set to require\nsynchronous updates because the file descriptor is opened with O_SYNC.\nThis can lead to the jbd2_journal_stop() function calling\njbd2_might_wait_for_commit(), potentially causing a deadlock if the\nEXT4_IOC_MIGRATE call races with a write(2) system call.\n\nThis problem only arises when CONFIG_PROVE_LOCKING is enabled. In this\ncase, the jbd2_might_wait_for_commit macro locks jbd2_handle in the\njbd2_journal_stop function while i_data_sem is locked. This triggers\nlockdep because the jbd2_journal_start function might also lock the same\njbd2_handle simultaneously.\n\nFound by Linux Verification Center (linuxtesting.org) with syzkaller.\n\nRule: add",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50006",
          "url": "https://www.suse.com/security/cve/CVE-2024-50006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232442 for CVE-2024-50006",
          "url": "https://bugzilla.suse.com/1232442"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50006"
    },
    {
      "cve": "CVE-2024-50014",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50014"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix access to uninitialised lock in fc replay path\n\nThe following kernel trace can be triggered with fstest generic/629 when\nexecuted against a filesystem with fast-commit feature enabled:\n\nINFO: trying to register non-static key.\nThe code is fine but needs lockdep annotation, or maybe\nyou didn\u0027t initialize this object before use?\nturning off the locking correctness validator.\nCPU: 0 PID: 866 Comm: mount Not tainted 6.10.0+ #11\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x66/0x90\n register_lock_class+0x759/0x7d0\n __lock_acquire+0x85/0x2630\n ? __find_get_block+0xb4/0x380\n lock_acquire+0xd1/0x2d0\n ? __ext4_journal_get_write_access+0xd5/0x160\n _raw_spin_lock+0x33/0x40\n ? __ext4_journal_get_write_access+0xd5/0x160\n __ext4_journal_get_write_access+0xd5/0x160\n ext4_reserve_inode_write+0x61/0xb0\n __ext4_mark_inode_dirty+0x79/0x270\n ? ext4_ext_replay_set_iblocks+0x2f8/0x450\n ext4_ext_replay_set_iblocks+0x330/0x450\n ext4_fc_replay+0x14c8/0x1540\n ? jread+0x88/0x2e0\n ? rcu_is_watching+0x11/0x40\n do_one_pass+0x447/0xd00\n jbd2_journal_recover+0x139/0x1b0\n jbd2_journal_load+0x96/0x390\n ext4_load_and_init_journal+0x253/0xd40\n ext4_fill_super+0x2cc6/0x3180\n...\n\nIn the replay path there\u0027s an attempt to lock sbi-\u003es_bdev_wb_lock in\nfunction ext4_check_bdev_write_error().  Unfortunately, at this point this\nspinlock has not been initialized yet.  Moving it\u0027s initialization to an\nearlier point in __ext4_fill_super() fixes this splat.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50014",
          "url": "https://www.suse.com/security/cve/CVE-2024-50014"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232446 for CVE-2024-50014",
          "url": "https://bugzilla.suse.com/1232446"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50014"
    },
    {
      "cve": "CVE-2024-50019",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50019"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkthread: unpark only parked kthread\n\nCalling into kthread unparking unconditionally is mostly harmless when\nthe kthread is already unparked. The wake up is then simply ignored\nbecause the target is not in TASK_PARKED state.\n\nHowever if the kthread is per CPU, the wake up is preceded by a call\nto kthread_bind() which expects the task to be inactive and in\nTASK_PARKED state, which obviously isn\u0027t the case if it is unparked.\n\nAs a result, calling kthread_stop() on an unparked per-cpu kthread\ntriggers such a warning:\n\n\tWARNING: CPU: 0 PID: 11 at kernel/kthread.c:525 __kthread_bind_mask kernel/kthread.c:525\n\t \u003cTASK\u003e\n\t kthread_stop+0x17a/0x630 kernel/kthread.c:707\n\t destroy_workqueue+0x136/0xc40 kernel/workqueue.c:5810\n\t wg_destruct+0x1e2/0x2e0 drivers/net/wireguard/device.c:257\n\t netdev_run_todo+0xe1a/0x1000 net/core/dev.c:10693\n\t default_device_exit_batch+0xa14/0xa90 net/core/dev.c:11769\n\t ops_exit_list net/core/net_namespace.c:178 [inline]\n\t cleanup_net+0x89d/0xcc0 net/core/net_namespace.c:640\n\t process_one_work kernel/workqueue.c:3231 [inline]\n\t process_scheduled_works+0xa2c/0x1830 kernel/workqueue.c:3312\n\t worker_thread+0x86d/0xd70 kernel/workqueue.c:3393\n\t kthread+0x2f0/0x390 kernel/kthread.c:389\n\t ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n\t ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\t \u003c/TASK\u003e\n\nFix this with skipping unecessary unparking while stopping a kthread.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50019",
          "url": "https://www.suse.com/security/cve/CVE-2024-50019"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231990 for CVE-2024-50019",
          "url": "https://bugzilla.suse.com/1231990"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50019"
    },
    {
      "cve": "CVE-2024-50024",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50024"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: Fix an unsafe loop on the list\n\nThe kernel may crash when deleting a genetlink family if there are still\nlisteners for that family:\n\nOops: Kernel access of bad area, sig: 11 [#1]\n  ...\n  NIP [c000000000c080bc] netlink_update_socket_mc+0x3c/0xc0\n  LR [c000000000c0f764] __netlink_clear_multicast_users+0x74/0xc0\n  Call Trace:\n__netlink_clear_multicast_users+0x74/0xc0\ngenl_unregister_family+0xd4/0x2d0\n\nChange the unsafe loop on the list to a safe one, because inside the\nloop there is an element removal from this list.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50024",
          "url": "https://www.suse.com/security/cve/CVE-2024-50024"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231954 for CVE-2024-50024",
          "url": "https://bugzilla.suse.com/1231954"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50024"
    },
    {
      "cve": "CVE-2024-50028",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50028"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: core: Reference count the zone in thermal_zone_get_by_id()\n\nThere are places in the thermal netlink code where nothing prevents\nthe thermal zone object from going away while being accessed after it\nhas been returned by thermal_zone_get_by_id().\n\nTo address this, make thermal_zone_get_by_id() get a reference on the\nthermal zone device object to be returned with the help of get_device(),\nunder thermal_list_lock, and adjust all of its callers to this change\nwith the help of the cleanup.h infrastructure.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50028",
          "url": "https://www.suse.com/security/cve/CVE-2024-50028"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231950 for CVE-2024-50028",
          "url": "https://bugzilla.suse.com/1231950"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50028"
    },
    {
      "cve": "CVE-2024-50033",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50033"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nslip: make slhc_remember() more robust against malicious packets\n\nsyzbot found that slhc_remember() was missing checks against\nmalicious packets [1].\n\nslhc_remember() only checked the size of the packet was at least 20,\nwhich is not good enough.\n\nWe need to make sure the packet includes the IPv4 and TCP header\nthat are supposed to be carried.\n\nAdd iph and th pointers to make the code more readable.\n\n[1]\n\nBUG: KMSAN: uninit-value in slhc_remember+0x2e8/0x7b0 drivers/net/slip/slhc.c:666\n  slhc_remember+0x2e8/0x7b0 drivers/net/slip/slhc.c:666\n  ppp_receive_nonmp_frame+0xe45/0x35e0 drivers/net/ppp/ppp_generic.c:2455\n  ppp_receive_frame drivers/net/ppp/ppp_generic.c:2372 [inline]\n  ppp_do_recv+0x65f/0x40d0 drivers/net/ppp/ppp_generic.c:2212\n  ppp_input+0x7dc/0xe60 drivers/net/ppp/ppp_generic.c:2327\n  pppoe_rcv_core+0x1d3/0x720 drivers/net/ppp/pppoe.c:379\n  sk_backlog_rcv+0x13b/0x420 include/net/sock.h:1113\n  __release_sock+0x1da/0x330 net/core/sock.c:3072\n  release_sock+0x6b/0x250 net/core/sock.c:3626\n  pppoe_sendmsg+0x2b8/0xb90 drivers/net/ppp/pppoe.c:903\n  sock_sendmsg_nosec net/socket.c:729 [inline]\n  __sock_sendmsg+0x30f/0x380 net/socket.c:744\n  ____sys_sendmsg+0x903/0xb60 net/socket.c:2602\n  ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2656\n  __sys_sendmmsg+0x3c1/0x960 net/socket.c:2742\n  __do_sys_sendmmsg net/socket.c:2771 [inline]\n  __se_sys_sendmmsg net/socket.c:2768 [inline]\n  __x64_sys_sendmmsg+0xbc/0x120 net/socket.c:2768\n  x64_sys_call+0xb6e/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:308\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n  slab_post_alloc_hook mm/slub.c:4091 [inline]\n  slab_alloc_node mm/slub.c:4134 [inline]\n  kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4186\n  kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:587\n  __alloc_skb+0x363/0x7b0 net/core/skbuff.c:678\n  alloc_skb include/linux/skbuff.h:1322 [inline]\n  sock_wmalloc+0xfe/0x1a0 net/core/sock.c:2732\n  pppoe_sendmsg+0x3a7/0xb90 drivers/net/ppp/pppoe.c:867\n  sock_sendmsg_nosec net/socket.c:729 [inline]\n  __sock_sendmsg+0x30f/0x380 net/socket.c:744\n  ____sys_sendmsg+0x903/0xb60 net/socket.c:2602\n  ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2656\n  __sys_sendmmsg+0x3c1/0x960 net/socket.c:2742\n  __do_sys_sendmmsg net/socket.c:2771 [inline]\n  __se_sys_sendmmsg net/socket.c:2768 [inline]\n  __x64_sys_sendmmsg+0xbc/0x120 net/socket.c:2768\n  x64_sys_call+0xb6e/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:308\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCPU: 0 UID: 0 PID: 5460 Comm: syz.2.33 Not tainted 6.12.0-rc2-syzkaller-00006-g87d6aab2389e #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50033",
          "url": "https://www.suse.com/security/cve/CVE-2024-50033"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231914 for CVE-2024-50033",
          "url": "https://bugzilla.suse.com/1231914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50033"
    },
    {
      "cve": "CVE-2024-50035",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50035"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nppp: fix ppp_async_encode() illegal access\n\nsyzbot reported an issue in ppp_async_encode() [1]\n\nIn this case, pppoe_sendmsg() is called with a zero size.\nThen ppp_async_encode() is called with an empty skb.\n\nBUG: KMSAN: uninit-value in ppp_async_encode drivers/net/ppp/ppp_async.c:545 [inline]\n BUG: KMSAN: uninit-value in ppp_async_push+0xb4f/0x2660 drivers/net/ppp/ppp_async.c:675\n  ppp_async_encode drivers/net/ppp/ppp_async.c:545 [inline]\n  ppp_async_push+0xb4f/0x2660 drivers/net/ppp/ppp_async.c:675\n  ppp_async_send+0x130/0x1b0 drivers/net/ppp/ppp_async.c:634\n  ppp_channel_bridge_input drivers/net/ppp/ppp_generic.c:2280 [inline]\n  ppp_input+0x1f1/0xe60 drivers/net/ppp/ppp_generic.c:2304\n  pppoe_rcv_core+0x1d3/0x720 drivers/net/ppp/pppoe.c:379\n  sk_backlog_rcv+0x13b/0x420 include/net/sock.h:1113\n  __release_sock+0x1da/0x330 net/core/sock.c:3072\n  release_sock+0x6b/0x250 net/core/sock.c:3626\n  pppoe_sendmsg+0x2b8/0xb90 drivers/net/ppp/pppoe.c:903\n  sock_sendmsg_nosec net/socket.c:729 [inline]\n  __sock_sendmsg+0x30f/0x380 net/socket.c:744\n  ____sys_sendmsg+0x903/0xb60 net/socket.c:2602\n  ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2656\n  __sys_sendmmsg+0x3c1/0x960 net/socket.c:2742\n  __do_sys_sendmmsg net/socket.c:2771 [inline]\n  __se_sys_sendmmsg net/socket.c:2768 [inline]\n  __x64_sys_sendmmsg+0xbc/0x120 net/socket.c:2768\n  x64_sys_call+0xb6e/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:308\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n  slab_post_alloc_hook mm/slub.c:4092 [inline]\n  slab_alloc_node mm/slub.c:4135 [inline]\n  kmem_cache_alloc_node_noprof+0x6bf/0xb80 mm/slub.c:4187\n  kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:587\n  __alloc_skb+0x363/0x7b0 net/core/skbuff.c:678\n  alloc_skb include/linux/skbuff.h:1322 [inline]\n  sock_wmalloc+0xfe/0x1a0 net/core/sock.c:2732\n  pppoe_sendmsg+0x3a7/0xb90 drivers/net/ppp/pppoe.c:867\n  sock_sendmsg_nosec net/socket.c:729 [inline]\n  __sock_sendmsg+0x30f/0x380 net/socket.c:744\n  ____sys_sendmsg+0x903/0xb60 net/socket.c:2602\n  ___sys_sendmsg+0x28d/0x3c0 net/socket.c:2656\n  __sys_sendmmsg+0x3c1/0x960 net/socket.c:2742\n  __do_sys_sendmmsg net/socket.c:2771 [inline]\n  __se_sys_sendmmsg net/socket.c:2768 [inline]\n  __x64_sys_sendmmsg+0xbc/0x120 net/socket.c:2768\n  x64_sys_call+0xb6e/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:308\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCPU: 1 UID: 0 PID: 5411 Comm: syz.1.14 Not tainted 6.12.0-rc1-syzkaller-00165-g360c1f1f24c6 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50035",
          "url": "https://www.suse.com/security/cve/CVE-2024-50035"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232392 for CVE-2024-50035",
          "url": "https://bugzilla.suse.com/1232392"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50035"
    },
    {
      "cve": "CVE-2024-50041",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50041"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: Fix macvlan leak by synchronizing access to mac_filter_hash\n\nThis patch addresses a macvlan leak issue in the i40e driver caused by\nconcurrent access to vsi-\u003emac_filter_hash. The leak occurs when multiple\nthreads attempt to modify the mac_filter_hash simultaneously, leading to\ninconsistent state and potential memory leaks.\n\nTo fix this, we now wrap the calls to i40e_del_mac_filter() and zeroing\nvf-\u003edefault_lan_addr.addr with spin_lock/unlock_bh(\u0026vsi-\u003emac_filter_hash_lock),\nensuring atomic operations and preventing concurrent access.\n\nAdditionally, we add lockdep_assert_held(\u0026vsi-\u003emac_filter_hash_lock) in\ni40e_add_mac_filter() to help catch similar issues in the future.\n\nReproduction steps:\n1. Spawn VFs and configure port vlan on them.\n2. Trigger concurrent macvlan operations (e.g., adding and deleting\n\tportvlan and/or mac filters).\n3. Observe the potential memory leak and inconsistent state in the\n\tmac_filter_hash.\n\nThis synchronization ensures the integrity of the mac_filter_hash and prevents\nthe described leak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50041",
          "url": "https://www.suse.com/security/cve/CVE-2024-50041"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231907 for CVE-2024-50041",
          "url": "https://bugzilla.suse.com/1231907"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50041"
    },
    {
      "cve": "CVE-2024-50045",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50045"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: br_netfilter: fix panic with metadata_dst skb\n\nFix a kernel panic in the br_netfilter module when sending untagged\ntraffic via a VxLAN device.\nThis happens during the check for fragmentation in br_nf_dev_queue_xmit.\n\nIt is dependent on:\n1) the br_netfilter module being loaded;\n2) net.bridge.bridge-nf-call-iptables set to 1;\n3) a bridge with a VxLAN (single-vxlan-device) netdevice as a bridge port;\n4) untagged frames with size higher than the VxLAN MTU forwarded/flooded\n\nWhen forwarding the untagged packet to the VxLAN bridge port, before\nthe netfilter hooks are called, br_handle_egress_vlan_tunnel is called and\nchanges the skb_dst to the tunnel dst. The tunnel_dst is a metadata type\nof dst, i.e., skb_valid_dst(skb) is false, and metadata-\u003edst.dev is NULL.\n\nThen in the br_netfilter hooks, in br_nf_dev_queue_xmit, there\u0027s a check\nfor frames that needs to be fragmented: frames with higher MTU than the\nVxLAN device end up calling br_nf_ip_fragment, which in turns call\nip_skb_dst_mtu.\n\nThe ip_dst_mtu tries to use the skb_dst(skb) as if it was a valid dst\nwith valid dst-\u003edev, thus the crash.\n\nThis case was never supported in the first place, so drop the packet\ninstead.\n\nPING 10.0.0.2 (10.0.0.2) from 0.0.0.0 h1-eth0: 2000(2028) bytes of data.\n[  176.291791] Unable to handle kernel NULL pointer dereference at\nvirtual address 0000000000000110\n[  176.292101] Mem abort info:\n[  176.292184]   ESR = 0x0000000096000004\n[  176.292322]   EC = 0x25: DABT (current EL), IL = 32 bits\n[  176.292530]   SET = 0, FnV = 0\n[  176.292709]   EA = 0, S1PTW = 0\n[  176.292862]   FSC = 0x04: level 0 translation fault\n[  176.293013] Data abort info:\n[  176.293104]   ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n[  176.293488]   CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[  176.293787]   GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[  176.293995] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000043ef5000\n[  176.294166] [0000000000000110] pgd=0000000000000000,\np4d=0000000000000000\n[  176.294827] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n[  176.295252] Modules linked in: vxlan ip6_udp_tunnel udp_tunnel veth\nbr_netfilter bridge stp llc ipv6 crct10dif_ce\n[  176.295923] CPU: 0 PID: 188 Comm: ping Not tainted\n6.8.0-rc3-g5b3fbd61b9d1 #2\n[  176.296314] Hardware name: linux,dummy-virt (DT)\n[  176.296535] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS\nBTYPE=--)\n[  176.296808] pc : br_nf_dev_queue_xmit+0x390/0x4ec [br_netfilter]\n[  176.297382] lr : br_nf_dev_queue_xmit+0x2ac/0x4ec [br_netfilter]\n[  176.297636] sp : ffff800080003630\n[  176.297743] x29: ffff800080003630 x28: 0000000000000008 x27:\nffff6828c49ad9f8\n[  176.298093] x26: ffff6828c49ad000 x25: 0000000000000000 x24:\n00000000000003e8\n[  176.298430] x23: 0000000000000000 x22: ffff6828c4960b40 x21:\nffff6828c3b16d28\n[  176.298652] x20: ffff6828c3167048 x19: ffff6828c3b16d00 x18:\n0000000000000014\n[  176.298926] x17: ffffb0476322f000 x16: ffffb7e164023730 x15:\n0000000095744632\n[  176.299296] x14: ffff6828c3f1c880 x13: 0000000000000002 x12:\nffffb7e137926a70\n[  176.299574] x11: 0000000000000001 x10: ffff6828c3f1c898 x9 :\n0000000000000000\n[  176.300049] x8 : ffff6828c49bf070 x7 : 0008460f18d5f20e x6 :\nf20e0100bebafeca\n[  176.300302] x5 : ffff6828c7f918fe x4 : ffff6828c49bf070 x3 :\n0000000000000000\n[  176.300586] x2 : 0000000000000000 x1 : ffff6828c3c7ad00 x0 :\nffff6828c7f918f0\n[  176.300889] Call trace:\n[  176.301123]  br_nf_dev_queue_xmit+0x390/0x4ec [br_netfilter]\n[  176.301411]  br_nf_post_routing+0x2a8/0x3e4 [br_netfilter]\n[  176.301703]  nf_hook_slow+0x48/0x124\n[  176.302060]  br_forward_finish+0xc8/0xe8 [bridge]\n[  176.302371]  br_nf_hook_thresh+0x124/0x134 [br_netfilter]\n[  176.302605]  br_nf_forward_finish+0x118/0x22c [br_netfilter]\n[  176.302824]  br_nf_forward_ip.part.0+0x264/0x290 [br_netfilter]\n[  176.303136]  br_nf_forward+0x2b8/0x4e0 [br_netfilter]\n[  176.303359]  nf_hook_slow+0x48/0x124\n[  176.303\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50045",
          "url": "https://www.suse.com/security/cve/CVE-2024-50045"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231903 for CVE-2024-50045",
          "url": "https://bugzilla.suse.com/1231903"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50045"
    },
    {
      "cve": "CVE-2024-50046",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50046"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies()\n\nOn the node of an NFS client, some files saved in the mountpoint of the\nNFS server were copied to another location of the same NFS server.\nAccidentally, the nfs42_complete_copies() got a NULL-pointer dereference\ncrash with the following syslog:\n\n[232064.838881] NFSv4: state recovery failed for open file nfs/pvc-12b5200d-cd0f-46a3-b9f0-af8f4fe0ef64.qcow2, error = -116\n[232064.839360] NFSv4: state recovery failed for open file nfs/pvc-12b5200d-cd0f-46a3-b9f0-af8f4fe0ef64.qcow2, error = -116\n[232066.588183] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000058\n[232066.588586] Mem abort info:\n[232066.588701]   ESR = 0x0000000096000007\n[232066.588862]   EC = 0x25: DABT (current EL), IL = 32 bits\n[232066.589084]   SET = 0, FnV = 0\n[232066.589216]   EA = 0, S1PTW = 0\n[232066.589340]   FSC = 0x07: level 3 translation fault\n[232066.589559] Data abort info:\n[232066.589683]   ISV = 0, ISS = 0x00000007\n[232066.589842]   CM = 0, WnR = 0\n[232066.589967] user pgtable: 64k pages, 48-bit VAs, pgdp=00002000956ff400\n[232066.590231] [0000000000000058] pgd=08001100ae100003, p4d=08001100ae100003, pud=08001100ae100003, pmd=08001100b3c00003, pte=0000000000000000\n[232066.590757] Internal error: Oops: 96000007 [#1] SMP\n[232066.590958] Modules linked in: rpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver nfs lockd grace fscache netfs ocfs2_dlmfs ocfs2_stack_o2cb ocfs2_dlm vhost_net vhost vhost_iotlb tap tun ipt_rpfilter xt_multiport ip_set_hash_ip ip_set_hash_net xfrm_interface xfrm6_tunnel tunnel4 tunnel6 esp4 ah4 wireguard libcurve25519_generic veth xt_addrtype xt_set nf_conntrack_netlink ip_set_hash_ipportnet ip_set_hash_ipportip ip_set_bitmap_port ip_set_hash_ipport dummy ip_set ip_vs_sh ip_vs_wrr ip_vs_rr ip_vs iptable_filter sch_ingress nfnetlink_cttimeout vport_gre ip_gre ip_tunnel gre vport_geneve geneve vport_vxlan vxlan ip6_udp_tunnel udp_tunnel openvswitch nf_conncount dm_round_robin dm_service_time dm_multipath xt_nat xt_MASQUERADE nft_chain_nat nf_nat xt_mark xt_conntrack xt_comment nft_compat nft_counter nf_tables nfnetlink ocfs2 ocfs2_nodemanager ocfs2_stackglue iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi ipmi_ssif nbd overlay 8021q garp mrp bonding tls rfkill sunrpc ext4 mbcache jbd2\n[232066.591052]  vfat fat cas_cache cas_disk ses enclosure scsi_transport_sas sg acpi_ipmi ipmi_si ipmi_devintf ipmi_msghandler ip_tables vfio_pci vfio_pci_core vfio_virqfd vfio_iommu_type1 vfio dm_mirror dm_region_hash dm_log dm_mod nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 br_netfilter bridge stp llc fuse xfs libcrc32c ast drm_vram_helper qla2xxx drm_kms_helper syscopyarea crct10dif_ce sysfillrect ghash_ce sysimgblt sha2_ce fb_sys_fops cec sha256_arm64 sha1_ce drm_ttm_helper ttm nvme_fc igb sbsa_gwdt nvme_fabrics drm nvme_core i2c_algo_bit i40e scsi_transport_fc megaraid_sas aes_neon_bs\n[232066.596953] CPU: 6 PID: 4124696 Comm: 10.253.166.125- Kdump: loaded Not tainted 5.15.131-9.cl9_ocfs2.aarch64 #1\n[232066.597356] Hardware name: Great Wall .\\x93\\x8e...RF6260 V5/GWMSSE2GL1T, BIOS T656FBE_V3.0.18 2024-01-06\n[232066.597721] pstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[232066.598034] pc : nfs4_reclaim_open_state+0x220/0x800 [nfsv4]\n[232066.598327] lr : nfs4_reclaim_open_state+0x12c/0x800 [nfsv4]\n[232066.598595] sp : ffff8000f568fc70\n[232066.598731] x29: ffff8000f568fc70 x28: 0000000000001000 x27: ffff21003db33000\n[232066.599030] x26: ffff800005521ae0 x25: ffff0100f98fa3f0 x24: 0000000000000001\n[232066.599319] x23: ffff800009920008 x22: ffff21003db33040 x21: ffff21003db33050\n[232066.599628] x20: ffff410172fe9e40 x19: ffff410172fe9e00 x18: 0000000000000000\n[232066.599914] x17: 0000000000000000 x16: 0000000000000004 x15: 0000000000000000\n[232066.600195] x14: 0000000000000000 x13: ffff800008e685a8 x12: 00000000eac0c6e6\n[232066.600498] x11: 00000000000000\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50046",
          "url": "https://www.suse.com/security/cve/CVE-2024-50046"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231902 for CVE-2024-50046",
          "url": "https://bugzilla.suse.com/1231902"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50046"
    },
    {
      "cve": "CVE-2024-50047",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50047"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix UAF in async decryption\n\nDoing an async decryption (large read) crashes with a\nslab-use-after-free way down in the crypto API.\n\nReproducer:\n    # mount.cifs -o ...,seal,esize=1 //srv/share /mnt\n    # dd if=/mnt/largefile of=/dev/null\n    ...\n    [  194.196391] ==================================================================\n    [  194.196844] BUG: KASAN: slab-use-after-free in gf128mul_4k_lle+0xc1/0x110\n    [  194.197269] Read of size 8 at addr ffff888112bd0448 by task kworker/u77:2/899\n    [  194.197707]\n    [  194.197818] CPU: 12 UID: 0 PID: 899 Comm: kworker/u77:2 Not tainted 6.11.0-lku-00028-gfca3ca14a17a-dirty #43\n    [  194.198400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-3-gd478f380-prebuilt.qemu.org 04/01/2014\n    [  194.199046] Workqueue: smb3decryptd smb2_decrypt_offload [cifs]\n    [  194.200032] Call Trace:\n    [  194.200191]  \u003cTASK\u003e\n    [  194.200327]  dump_stack_lvl+0x4e/0x70\n    [  194.200558]  ? gf128mul_4k_lle+0xc1/0x110\n    [  194.200809]  print_report+0x174/0x505\n    [  194.201040]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n    [  194.201352]  ? srso_return_thunk+0x5/0x5f\n    [  194.201604]  ? __virt_addr_valid+0xdf/0x1c0\n    [  194.201868]  ? gf128mul_4k_lle+0xc1/0x110\n    [  194.202128]  kasan_report+0xc8/0x150\n    [  194.202361]  ? gf128mul_4k_lle+0xc1/0x110\n    [  194.202616]  gf128mul_4k_lle+0xc1/0x110\n    [  194.202863]  ghash_update+0x184/0x210\n    [  194.203103]  shash_ahash_update+0x184/0x2a0\n    [  194.203377]  ? __pfx_shash_ahash_update+0x10/0x10\n    [  194.203651]  ? srso_return_thunk+0x5/0x5f\n    [  194.203877]  ? crypto_gcm_init_common+0x1ba/0x340\n    [  194.204142]  gcm_hash_assoc_remain_continue+0x10a/0x140\n    [  194.204434]  crypt_message+0xec1/0x10a0 [cifs]\n    [  194.206489]  ? __pfx_crypt_message+0x10/0x10 [cifs]\n    [  194.208507]  ? srso_return_thunk+0x5/0x5f\n    [  194.209205]  ? srso_return_thunk+0x5/0x5f\n    [  194.209925]  ? srso_return_thunk+0x5/0x5f\n    [  194.210443]  ? srso_return_thunk+0x5/0x5f\n    [  194.211037]  decrypt_raw_data+0x15f/0x250 [cifs]\n    [  194.212906]  ? __pfx_decrypt_raw_data+0x10/0x10 [cifs]\n    [  194.214670]  ? srso_return_thunk+0x5/0x5f\n    [  194.215193]  smb2_decrypt_offload+0x12a/0x6c0 [cifs]\n\nThis is because TFM is being used in parallel.\n\nFix this by allocating a new AEAD TFM for async decryption, but keep\nthe existing one for synchronous READ cases (similar to what is done\nin smb3_calc_signature()).\n\nAlso remove the calls to aead_request_set_callback() and\ncrypto_wait_req() since it\u0027s always going to be a synchronous operation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50047",
          "url": "https://www.suse.com/security/cve/CVE-2024-50047"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232418 for CVE-2024-50047",
          "url": "https://bugzilla.suse.com/1232418"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232576 for CVE-2024-50047",
          "url": "https://bugzilla.suse.com/1232576"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232638 for CVE-2024-50047",
          "url": "https://bugzilla.suse.com/1232638"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-50047"
    },
    {
      "cve": "CVE-2024-50048",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50048"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbcon: Fix a NULL pointer dereference issue in fbcon_putcs\n\nsyzbot has found a NULL pointer dereference bug in fbcon.\nHere is the simplified C reproducer:\n\nstruct param {\n\tuint8_t type;\n\tstruct tiocl_selection ts;\n};\n\nint main()\n{\n\tstruct fb_con2fbmap con2fb;\n\tstruct param param;\n\n\tint fd = open(\"/dev/fb1\", 0, 0);\n\n\tcon2fb.console = 0x19;\n\tcon2fb.framebuffer = 0;\n\tioctl(fd, FBIOPUT_CON2FBMAP, \u0026con2fb);\n\n\tparam.type = 2;\n\tparam.ts.xs = 0; param.ts.ys = 0;\n\tparam.ts.xe = 0; param.ts.ye = 0;\n\tparam.ts.sel_mode = 0;\n\n\tint fd1 = open(\"/dev/tty1\", O_RDWR, 0);\n\tioctl(fd1, TIOCLINUX, \u0026param);\n\n\tcon2fb.console = 1;\n\tcon2fb.framebuffer = 0;\n\tioctl(fd, FBIOPUT_CON2FBMAP, \u0026con2fb);\n\n\treturn 0;\n}\n\nAfter calling ioctl(fd1, TIOCLINUX, \u0026param), the subsequent ioctl(fd, FBIOPUT_CON2FBMAP, \u0026con2fb)\ncauses the kernel to follow a different execution path:\n\n set_con2fb_map\n  -\u003e con2fb_init_display\n   -\u003e fbcon_set_disp\n    -\u003e redraw_screen\n     -\u003e hide_cursor\n      -\u003e clear_selection\n       -\u003e highlight\n        -\u003e invert_screen\n         -\u003e do_update_region\n          -\u003e fbcon_putcs\n           -\u003e ops-\u003eputcs\n\nSince ops-\u003eputcs is a NULL pointer, this leads to a kernel panic.\nTo prevent this, we need to call set_blitting_type() within set_con2fb_map()\nto properly initialize ops-\u003eputcs.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50048",
          "url": "https://www.suse.com/security/cve/CVE-2024-50048"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232310 for CVE-2024-50048",
          "url": "https://bugzilla.suse.com/1232310"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50048"
    },
    {
      "cve": "CVE-2024-50049",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50049"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointer before dereferencing se\n\n[WHAT \u0026 HOW]\nse is null checked previously in the same function, indicating\nit might be null; therefore, it must be checked when used again.\n\nThis fixes 1 FORWARD_NULL issue reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50049",
          "url": "https://www.suse.com/security/cve/CVE-2024-50049"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232309 for CVE-2024-50049",
          "url": "https://bugzilla.suse.com/1232309"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50049"
    },
    {
      "cve": "CVE-2024-50055",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50055"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver core: bus: Fix double free in driver API bus_register()\n\nFor bus_register(), any error which happens after kset_register() will\ncause that @priv are freed twice, fixed by setting @priv with NULL after\nthe first free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50055",
          "url": "https://www.suse.com/security/cve/CVE-2024-50055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232329 for CVE-2024-50055",
          "url": "https://bugzilla.suse.com/1232329"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50055"
    },
    {
      "cve": "CVE-2024-50058",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50058"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: protect uart_port_dtr_rts() in uart_shutdown() too\n\nCommit af224ca2df29 (serial: core: Prevent unsafe uart port access, part\n3) added few uport == NULL checks. It added one to uart_shutdown(), so\nthe commit assumes, uport can be NULL in there. But right after that\nprotection, there is an unprotected \"uart_port_dtr_rts(uport, false);\"\ncall. That is invoked only if HUPCL is set, so I assume that is the\nreason why we do not see lots of these reports.\n\nOr it cannot be NULL at this point at all for some reason :P.\n\nUntil the above is investigated, stay on the safe side and move this\ndereference to the if too.\n\nI got this inconsistency from Coverity under CID 1585130. Thanks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50058",
          "url": "https://www.suse.com/security/cve/CVE-2024-50058"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232285 for CVE-2024-50058",
          "url": "https://bugzilla.suse.com/1232285"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50058"
    },
    {
      "cve": "CVE-2024-50059",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50059"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition\n\nIn the switchtec_ntb_add function, it can call switchtec_ntb_init_sndev\nfunction, then \u0026sndev-\u003echeck_link_status_work is bound with\ncheck_link_status_work. switchtec_ntb_link_notification may be called\nto start the work.\n\nIf we remove the module which will call switchtec_ntb_remove to make\ncleanup, it will free sndev through kfree(sndev), while the work\nmentioned above will be used. The sequence of operations that may lead\nto a UAF bug is as follows:\n\nCPU0                                 CPU1\n\n                        | check_link_status_work\nswitchtec_ntb_remove    |\nkfree(sndev);           |\n                        | if (sndev-\u003elink_force_down)\n                        | // use sndev\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in switchtec_ntb_remove.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50059",
          "url": "https://www.suse.com/security/cve/CVE-2024-50059"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232345 for CVE-2024-50059",
          "url": "https://bugzilla.suse.com/1232345"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232348 for CVE-2024-50059",
          "url": "https://bugzilla.suse.com/1232348"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-50059"
    },
    {
      "cve": "CVE-2024-50061",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50061"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition\n\nIn the cdns_i3c_master_probe function, \u0026master-\u003ehj_work is bound with\ncdns_i3c_master_hj. And cdns_i3c_master_interrupt can call\ncnds_i3c_master_demux_ibis function to start the work.\n\nIf we remove the module which will call cdns_i3c_master_remove to\nmake cleanup, it will free master-\u003ebase through i3c_master_unregister\nwhile the work mentioned above will be used. The sequence of operations\nthat may lead to a UAF bug is as follows:\n\nCPU0                                      CPU1\n\n                                     | cdns_i3c_master_hj\ncdns_i3c_master_remove               |\ni3c_master_unregister(\u0026master-\u003ebase) |\ndevice_unregister(\u0026master-\u003edev)      |\ndevice_release                       |\n//free master-\u003ebase                  |\n                                     | i3c_master_do_daa(\u0026master-\u003ebase)\n                                     | //use master-\u003ebase\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in cdns_i3c_master_remove.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50061",
          "url": "https://www.suse.com/security/cve/CVE-2024-50061"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232263 for CVE-2024-50061",
          "url": "https://bugzilla.suse.com/1232263"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50061"
    },
    {
      "cve": "CVE-2024-50063",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50063"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Prevent tail call between progs attached to different hooks\n\nbpf progs can be attached to kernel functions, and the attached functions\ncan take different parameters or return different return values. If\nprog attached to one kernel function tail calls prog attached to another\nkernel function, the ctx access or return value verification could be\nbypassed.\n\nFor example, if prog1 is attached to func1 which takes only 1 parameter\nand prog2 is attached to func2 which takes two parameters. Since verifier\nassumes the bpf ctx passed to prog2 is constructed based on func2\u0027s\nprototype, verifier allows prog2 to access the second parameter from\nthe bpf ctx passed to it. The problem is that verifier does not prevent\nprog1 from passing its bpf ctx to prog2 via tail call. In this case,\nthe bpf ctx passed to prog2 is constructed from func1 instead of func2,\nthat is, the assumption for ctx access verification is bypassed.\n\nAnother example, if BPF LSM prog1 is attached to hook file_alloc_security,\nand BPF LSM prog2 is attached to hook bpf_lsm_audit_rule_known. Verifier\nknows the return value rules for these two hooks, e.g. it is legal for\nbpf_lsm_audit_rule_known to return positive number 1, and it is illegal\nfor file_alloc_security to return positive number. So verifier allows\nprog2 to return positive number 1, but does not allow prog1 to return\npositive number. The problem is that verifier does not prevent prog1\nfrom calling prog2 via tail call. In this case, prog2\u0027s return value 1\nwill be used as the return value for prog1\u0027s hook file_alloc_security.\nThat is, the return value rule is bypassed.\n\nThis patch adds restriction for tail call to prevent such bypasses.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50063",
          "url": "https://www.suse.com/security/cve/CVE-2024-50063"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232435 for CVE-2024-50063",
          "url": "https://bugzilla.suse.com/1232435"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50063"
    },
    {
      "cve": "CVE-2024-50081",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50081"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-mq: setup queue -\u003etag_set before initializing hctx\n\nCommit 7b815817aa58 (\"blk-mq: add helper for checking if one CPU is mapped to specified hctx\")\nneeds to check queue mapping via tag set in hctx\u0027s cpuhp handler.\n\nHowever, q-\u003etag_set may not be setup yet when the cpuhp handler is\nenabled, then kernel oops is triggered.\n\nFix the issue by setup queue tag_set before initializing hctx.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50081",
          "url": "https://www.suse.com/security/cve/CVE-2024-50081"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232501 for CVE-2024-50081",
          "url": "https://bugzilla.suse.com/1232501"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.72.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.72.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.72.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:12:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50081"
    }
  ]
}

suse-su-2024:3985-1

Vulnerability from csaf_suse

Published

2024-11-13 10:13

Modified

2024-11-13 10:13

Summary

Security update for the Linux Kernel

Notes

Title of the patch

Security update for the Linux Kernel

Description of the patch

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-48879: efi: fix NULL-deref in init error path (bsc#1229556). - CVE-2022-48956: ipv6: avoid use-after-free in ip6_fragment() (bsc#1231893). - CVE-2022-48957: dpaa2-switch: Fix memory leak in dpaa2_switch_acl_entry_add() and dpaa2_switch_acl_entry_remove() (bsc#1231973). - CVE-2022-48958: ethernet: aeroflex: fix potential skb leak in greth_init_rings() (bsc#1231889). - CVE-2022-48959: net: dsa: sja1105: fix memory leak in sja1105_setup_devlink_regions() (bsc#1231976). - CVE-2022-48960: net: hisilicon: Fix potential use-after-free in hix5hd2_rx() (bsc#1231979). - CVE-2022-48962: net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (bsc#1232286). - CVE-2022-48966: net: mvneta: Fix an out of bounds check (bsc#1232191). - CVE-2022-48980: net: dsa: sja1105: avoid out of bounds access in sja1105_init_l2_policing() (bsc#1232233). - CVE-2022-48991: mm/khugepaged: fix collapse_pte_mapped_thp() to allow anon_vma (bsc#1232070). - CVE-2022-49015: net: hsr: Fix potential use-after-free (bsc#1231938). - CVE-2022-49017: tipc: re-fetch skb cb after tipc_msg_validate (bsc#1232004). - CVE-2022-49020: net/9p: Fix a potential socket leak in p9_socket_open (bsc#1232175). - CVE-2024-36244: net/sched: taprio: extend minimum interval restriction to entire cycle too (bsc#1226797). - CVE-2024-36957: octeontx2-af: avoid off-by-one read from userspace (bsc#1225762). - CVE-2024-39476: md/raid5: fix deadlock that raid5d() wait for itself to clear MD_SB_CHANGE_PENDING (bsc#1227437). - CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885). - CVE-2024-42226: Prevent potential failure in handle_tx_event() for Transfer events without TRB (bsc#1228709). - CVE-2024-42253: gpio: pca953x: fix pca953x_irq_bus_sync_unlock race (bsc#1229005). - CVE-2024-44931: gpio: prevent potential speculation leaks in gpio_device_get_desc() (bsc#1229837). - CVE-2024-44958: sched/smt: Fix unbalance sched_smt_present dec/inc (bsc#1230179). - CVE-2024-45016: netem: fix return value if duplicate enqueue fails (bsc#1230429). - CVE-2024-45025: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE (bsc#1230456). - CVE-2024-46678: bonding: change ipsec_lock from spin lock to mutex (bsc#1230550). - CVE-2024-46716: dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (bsc#1230715). - CVE-2024-46754: bpf: Remove tst_run from lwt_seg6local_prog_ops (bsc#1230801). - CVE-2024-46770: ice: Add netif_device_attach/detach into PF reset flow (bsc#1230763). - CVE-2024-46775: drm/amd/display: Validate function returns (bsc#1230774). - CVE-2024-46777: udf: Avoid excessive partition lengths (bsc#1230773). - CVE-2024-46809: drm/amd/display: Check BIOS images before it is used (bsc#1231148). - CVE-2024-46811: drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (bsc#1231179). - CVE-2024-46813: drm/amd/display: Check link_index before accessing dc->links (bsc#1231191). - CVE-2024-46814: drm/amd/display: Check msg_id before processing transcation (bsc#1231193). - CVE-2024-46815: drm/amd/display: Check num_valid_sets before accessing reader_wm_sets (bsc#1231195). - CVE-2024-46816: drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links (bsc#1231197). - CVE-2024-46817: drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (bsc#1231200). - CVE-2024-46818: drm/amd/display: Check gpio_id before used as array index (bsc#1231203). - CVE-2024-46826: ELF: fix kernel.randomize_va_space double read (bsc#1231115). - CVE-2024-46828: uprobes: fix kernel info leak via '[uprobes]' vma (bsc#1231114). - CVE-2024-46834: ethtool: fail closed if we can't get max channel used in indirection tables (bsc#1231096). - CVE-2024-46840: btrfs: clean up our handling of refs == 0 in snapshot delete (bsc#1231105). - CVE-2024-46841: btrfs: do not BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (bsc#1231094). - CVE-2024-46848: perf/x86/intel: Limit the period on Haswell (bsc#1231072). - CVE-2024-46849: ASoC: meson: axg-card: fix 'use-after-free' (bsc#1231073). - CVE-2024-46854: net: dpaa: Pad packets to ETH_ZLEN (bsc#1231084). - CVE-2024-46855: netfilter: nft_socket: fix sk refcount leaks (bsc#1231085). - CVE-2024-46857: net/mlx5: Fix bridge mode operations when there are no VFs (bsc#1231087). - CVE-2024-47660: fsnotify: clear PARENT_WATCHED flags lazily (bsc#1231439). - CVE-2024-47661: drm/amd/display: Avoid overflow from uint32_t to uint8_t (bsc#1231496). - CVE-2024-47664: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware (bsc#1231442). - CVE-2024-47668: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (bsc#1231502). - CVE-2024-47672: wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (bsc#1231540). - CVE-2024-47673: wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (bsc#1231539). - CVE-2024-47674: mm: avoid leaving partial pfn mappings around in error case (bsc#1231673). - CVE-2024-47684: tcp: check skb is non-NULL in tcp_rto_delta_us() (bsc#1231987). - CVE-2024-47685: netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() (bsc#1231998). - CVE-2024-47692: nfsd: return -EINVAL when namelen is 0 (bsc#1231857). - CVE-2024-47704: drm/amd/display: Check link_res->hpo_dp_link_enc before using it (bsc#1231944). - CVE-2024-47705: block: fix potential invalid pointer dereference in blk_add_partition (bsc#1231872). - CVE-2024-47706: block, bfq: fix possible UAF for bfqq->bic with merge chain (bsc#1231942). - CVE-2024-47707: ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev() (bsc#1231935). - CVE-2024-47710: sock_map: Add a cond_resched() in sock_hash_free() (bsc#1232049). - CVE-2024-47720: drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (bsc#1232043). - CVE-2024-47727: x86/tdx: Fix 'in-kernel MMIO' check (bsc#1232116). - CVE-2024-47730: crypto: hisilicon/qm - inject error before stopping queue (bsc#1232075). - CVE-2024-47738: wifi: mac80211: do not use rate mask for offchannel TX either (bsc#1232114). - CVE-2024-47739: padata: use integer wrap around to prevent deadlock on seq_nr overflow (bsc#1232124). - CVE-2024-47745: mm: split critical region in remap_file_pages() and invoke LSMs in between (bsc#1232135). - CVE-2024-47747: net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition (bsc#1232145). - CVE-2024-47748: vhost_vdpa: assign irq bypass producer token correctly (bsc#1232174). - CVE-2024-49860: ACPI: sysfs: validate return type of _STR method (bsc#1231861). - CVE-2024-49866: tracing/timerlat: Fix a race during cpuhp processing (bsc#1232259). - CVE-2024-49881: ext4: update orig_path in ext4_find_extent() (bsc#1232201). - CVE-2024-49882: ext4: fix double brelse() the buffer of the extents path (bsc#1232200). - CVE-2024-49883: ext4: aovid use-after-free in ext4_ext_insert_extent() (bsc#1232199). - CVE-2024-49886: platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug (bsc#1232196). - CVE-2024-49890: drm/amd/pm: ensure the fw_info is not null before using it (bsc#1232217). - CVE-2024-49892: drm/amd/display: Initialize get_bytes_per_element's default to 1 (bsc#1232220). - CVE-2024-49894: drm/amd/display: Fix index out of bounds in degamma hardware format translation (bsc#1232354). - CVE-2024-49896: drm/amd/display: Check stream before comparing them (bsc#1232221). - CVE-2024-49897: drm/amd/display: Check phantom_stream before it is used (bsc#1232355). - CVE-2024-49899: drm/amd/display: Initialize denominators' default to 1 (bsc#1232358). - CVE-2024-49901: drm/msm/adreno: Assign msm_gpu->pdev earlier to avoid nullptrs (bsc#1232305). - CVE-2024-49906: drm/amd/display: Check null pointer before try to access it (bsc#1232332). - CVE-2024-49909: drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func (bsc#1232337). - CVE-2024-49911: drm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func (bsc#1232366). - CVE-2024-49914: drm/amd/display: Add null check for pipe_ctx->plane_state in (bsc#1232369). - CVE-2024-49917: drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw (bsc#1231965). - CVE-2024-49918: drm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer (bsc#1231967). - CVE-2024-49919: drm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer (bsc#1231968). - CVE-2024-49920: drm/amd/display: Check null pointers before multiple uses (bsc#1232313). - CVE-2024-49922: drm/amd/display: Check null pointers before using them (bsc#1232374). - CVE-2024-49923: drm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags (bsc#1232361). - CVE-2024-49929: wifi: iwlwifi: mvm: avoid NULL pointer dereference (bsc#1232253). - CVE-2024-49930: wifi: ath11k: fix array out-of-bound access in SoC stats (bsc#1232260). - CVE-2024-49933: blk_iocost: fix more out of bound shifts (bsc#1232368). - CVE-2024-49936: net/xen-netback: prevent UAF in xenvif_flush_hash() (bsc#1232424). - CVE-2024-49939: wifi: rtw89: avoid to add interface to list twice when SER (bsc#1232381). - CVE-2024-49946: ppp: do not assume bh is held in ppp_channel_bridge_input() (bsc#1232164). - CVE-2024-49949: net: avoid potential underflow in qdisc_pkt_len_init() with UFO (bsc#1232160). - CVE-2024-49954: static_call: Replace pointless WARN_ON() in static_call_module_notify() (bsc#1232155). - CVE-2024-49955: ACPI: battery: Fix possible crash when unregistering a battery hook (bsc#1232154). - CVE-2024-49958: ocfs2: reserve space for inline xattr before attaching reflink tree (bsc#1232151). - CVE-2024-49959: jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error (bsc#1232149). - CVE-2024-49960: ext4: fix timer use-after-free on failed mount (bsc#1232395). - CVE-2024-49962: ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() (bsc#1232314). - CVE-2024-49967: ext4: no need to continue when the number of entries is 1 (bsc#1232140). - CVE-2024-49969: drm/amd/display: Fix index out of bounds in DCN30 color transformation (bsc#1232519). - CVE-2024-49973: r8169: add tally counter fields added with RTL8125 (bsc#1232105). - CVE-2024-49974: NFSD: Force all NFSv4.2 COPY requests to be synchronous (bsc#1232383). - CVE-2024-49975: uprobes: fix kernel info leak via '[uprobes]' vma (bsc#1232104). - CVE-2024-49991: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (bsc#1232282). - CVE-2024-49993: iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count (bsc#1232316). - CVE-2024-49995: tipc: guard against string buffer overrun (bsc#1232432). - CVE-2024-49996: cifs: Fix buffer overflow when parsing NFS reparse points (bsc#1232089). - CVE-2024-50000: net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() (bsc#1232085). - CVE-2024-50001: net/mlx5: Fix error path in multi-packet WQE transmit (bsc#1232084). - CVE-2024-50002: static_call: Handle module init failure correctly in static_call_del_module() (bsc#1232083). - CVE-2024-50006: ext4: fix i_data_sem unlock order in ext4_ind_migrate() (bsc#1232442). - CVE-2024-50014: ext4: fix access to uninitialised lock in fc replay path (bsc#1232446). - CVE-2024-50019: kthread: unpark only parked kthread (bsc#1231990). - CVE-2024-50024: net: Fix an unsafe loop on the list (bsc#1231954). - CVE-2024-50028: thermal: core: Reference count the zone in thermal_zone_get_by_id() (bsc#1231950). - CVE-2024-50033: slip: make slhc_remember() more robust against malicious packets (bsc#1231914). - CVE-2024-50035: ppp: fix ppp_async_encode() illegal access (bsc#1232392). - CVE-2024-50041: i40e: Fix macvlan leak by synchronizing access to mac_filter_hash (bsc#1231907). - CVE-2024-50045: netfilter: br_netfilter: fix panic with metadata_dst skb (bsc#1231903). - CVE-2024-50046: kabi fix for NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies() (bsc#1231902). - CVE-2024-50047: smb: client: fix UAF in async decryption (bsc#1232418). - CVE-2024-50048: fbcon: Fix a NULL pointer dereference issue in fbcon_putcs (bsc#1232310). - CVE-2024-50055: driver core: bus: Fix double free in driver API bus_register() (bsc#1232329). - CVE-2024-50058: serial: protect uart_port_dtr_rts() in uart_shutdown() too (bsc#1232285). - CVE-2024-50059: ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (bsc#1232345). - CVE-2024-50061: i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition (bsc#1232263). - CVE-2024-50063: kABI: bpf: struct bpf_map kABI workaround (bsc#1232435). - CVE-2024-50081: blk-mq: setup queue ->tag_set before initializing hctx (bsc#1232501). The following non-security bugs were fixed: - ACPI: EC: Do not release locks during operation region accesses (stable-fixes). - ACPI: PAD: fix crash in exit_round_robin() (stable-fixes). - ACPI: PRM: Clean up guid type in struct prm_handler_info (git-fixes). - ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context (git-fixes). - ACPI: battery: Call power_supply_changed() when adding hooks (bsc#1232154) - ACPI: battery: Simplify battery hook locking (bsc#1232154) - ACPI: resource: Add Asus ExpertBook B2502CVA to irq1_level_low_skip_override[] (stable-fixes). - ACPI: resource: Add Asus Vivobook X1704VAP to irq1_level_low_skip_override[] (stable-fixes). - ACPI: resource: Add another DMI match for the TongFang GMxXGxx (stable-fixes). - ACPICA: Fix memory leak if acpi_ps_get_next_field() fails (stable-fixes). - ACPICA: Fix memory leak if acpi_ps_get_next_namepath() fails (stable-fixes). - ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() (stable-fixes). - ACPICA: iasl: handle empty connection_node (stable-fixes). - ALSA: asihpi: Fix potential OOB array access (stable-fixes). - ALSA: core: add isascii() check to card ID generator (stable-fixes). - ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() (git-fixes). - ALSA: hda/conexant - Fix audio routing for HP EliteOne 1000 G2 (stable-fixes). - ALSA: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne 1000 G2 (git-fixes). - ALSA: hda/conexant: Fix conflicting quirk for System76 Pangolin (git-fixes). - ALSA: hda/cs8409: Fix possible NULL dereference (git-fixes). - ALSA: hda/generic: Unconditionally prefer preferred_dacs pairs (git-fixes). - ALSA: hda/realtek - FIxed ALC285 headphone no sound (stable-fixes). - ALSA: hda/realtek - Fixed ALC256 headphone no sound (stable-fixes). - ALSA: hda/realtek: Add a quirk for HP Pavilion 15z-ec200 (stable-fixes). - ALSA: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9 (stable-fixes). - ALSA: hda/realtek: Fix the push button function for the ALC257 (git-fixes). - ALSA: hda/realtek: Update default depop procedure (git-fixes). - ALSA: hda: Fix kctl->id initialization (git-fixes). - ALSA: hda: cs35l41: fix module autoloading (git-fixes). - ALSA: hdsp: Break infinite MIDI input flush loop (stable-fixes). - ALSA: line6: add hw monitor volume control to POD HD500X (stable-fixes). - ALSA: mixer_oss: Remove some incorrect kfree_const() usages (git-fixes). - ALSA: usb-audio: Add delay quirk for VIVO USB-C HEADSET (stable-fixes). - ALSA: usb-audio: Add input value sanity checks for standard types (stable-fixes). - ALSA: usb-audio: Add logitech Audio profile quirk (stable-fixes). - ALSA: usb-audio: Add native DSD support for Luxman D-08u (stable-fixes). - ALSA: usb-audio: Define macros for quirk table entries (stable-fixes). - ALSA: usb-audio: Replace complex quirk lines with macros (stable-fixes). - ASoC: allow module autoloading for table db1200_pids (stable-fixes). - ASoC: imx-card: Set card.owner to avoid a warning calltrace if SND=m (git-fixes). - ASoC: intel: fix module autoloading (stable-fixes). - ASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe() (git-fixes). - ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes). - ASoC: soc-pcm: Do not zero TDM masks in __soc_pcm_open() (git-fixes). - ASoC: tda7419: fix module autoloading (stable-fixes). - Bluetooth: Call iso_exit() on module unload (git-fixes). - Bluetooth: ISO: Fix multiple init when debugfs is disabled (git-fixes). - Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change (git-fixes). - Bluetooth: Remove debugfs directory on module init failure (git-fixes). - Bluetooth: bnep: fix wild-memory-access in proto_unregister (git-fixes). - Bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes). - Bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001 (git-fixes). - Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE (git-fixes). - Drop HD-audio conexant patch that caused a regression on Thinkpad (bsc#1228269) - Drop USB dwc2 patch that caused a regression on RPi3 (bsc#1232342) - HID: amd_sfh: Switch to device-managed dmam_alloc_coherent() (git-fixes). - HID: multitouch: Add support for GT7868Q (stable-fixes). - HID: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio (stable-fixes). - HID: plantronics: Workaround for an unexcepted opposite volume key (stable-fixes). - Input: adp5589-keys - fix NULL pointer dereference (git-fixes). - Input: adp5589-keys - fix adp5589_gpio_get_value() (git-fixes). - Input: ads7846 - ratelimit the spi_sync error message (stable-fixes). - Input: goodix - use the new soc_intel_is_byt() helper (stable-fixes). - Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes). - KVM: Fix coalesced_mmio_has_room() to avoid premature userspace exit (git-fixes). - KVM: Fix lockdep false negative during host resume (git-fixes). - KVM: Grab a reference to KVM for VM and vCPU stats file descriptors (git-fixes). - KVM: Optimize kvm_make_vcpus_request_mask() a bit (git-fixes). - KVM: Pre-allocate cpumasks for kvm_make_all_cpus_request_except() (git-fixes). - KVM: Reject overly excessive IDs in KVM_CREATE_VCPU (git-fixes). - KVM: SVM: Disallow guest from changing userspace's MSR_AMD64_DE_CFG value (git-fixes). - KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes). - KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes). - KVM: Unconditionally get a ref to /dev/kvm module when creating a VM (git-fixes). - KVM: Write the per-page 'segment' when clearing (part of) a guest page (git-fixes). - KVM: arm64: Add missing memory barriers when switching to pKVM's hyp pgd (git-fixes). - KVM: arm64: Allow AArch32 PSTATE.M to be restored as System mode (git-fixes). - KVM: arm64: Fix AArch32 register narrowing on userspace write (git-fixes). - KVM: arm64: GICv4: Do not perform a map to a mapped vLPI (git-fixes). - KVM: arm64: Invalidate EL1&0 TLB entries for all VMIDs in nvhe hyp init (git-fixes). - KVM: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes). - KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes). - KVM: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes). - KVM: arm64: vgic-its: Test for valid IRQ in MOVALL handler (git-fixes). - KVM: arm64: vgic-its: Test for valid IRQ in its_sync_lpi_pending_table() (git-fixes). - KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes). - KVM: arm64: vgic-v2: Use cpuid from userspace as vcpu_id (git-fixes). - KVM: arm64: vgic-v4: Restore pending state on host userspace write (git-fixes). - KVM: eventfd: Fix false positive RCU usage warning (git-fixes). - KVM: fix memoryleak in kvm_init() (git-fixes). - KVM: s390: Change virtual to physical address access in diag 0x258 handler (git-fixes bsc#1232631). - KVM: s390: Fix SORTL and DFLTCC instruction format error in __insn32_query (git-fixes bsc#1231277). - KVM: s390: gaccess: Check if guest address is in memslot (git-fixes bsc#1232630). - KVM: x86/mmu: Fold rmap_recycle into rmap_add (git-fixes). - KVM: x86/mmu: Rename slot_handle_leaf to slot_handle_level_4k (git-fixes). - KVM: x86: Use a stable condition around all VT-d PI paths (git-fixes). - Makefile.compiler: replace cc-ifversion with compiler-specific macros (bsc#1230414 bsc#1229450). - NFS: Avoid unnecessary rescanning of the per-server delegation list (git-fixes). - NFSD: Fix NFSv4's PUTPUBFH operation (git-fixes). - NFSD: Mark filecache 'down' if init fails (git-fixes). - NFSv3: only use NFS timeout for MOUNT when protocols are compatible (bsc#1231016). - NFSv4: Fix clearing of layout segments in layoutreturn (git-fixes). - PCI: Add ACS quirk for Qualcomm SA8775P (stable-fixes). - PCI: Add function 0 DMA alias quirk for Glenfly Arise chip (stable-fixes). - PCI: Fix pci_enable_acs() support for the ACS quirks (bsc#1229019). - PCI: Mark Creative Labs EMU20k2 INTx masking as broken (stable-fixes). - RDMA/bnxt_re: Add a check for memory allocation (git-fixes) - RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (git-fixes) - RDMA/bnxt_re: Fix incorrect AVID type in WQE structure (git-fixes) - RDMA/bnxt_re: Fix the GID table length (git-fixes) - RDMA/bnxt_re: Fix the max CQ WQEs for older adapters (git-fixes) - RDMA/bnxt_re: Fix the usage of control path spin locks (git-fixes) - RDMA/bnxt_re: Return more meaningful error (git-fixes) - RDMA/bnxt_re: synchronize the qp-handle table array (git-fixes) - RDMA/cxgb4: Dump vendor specific QP details (git-fixes) - RDMA/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP (git-fixes) - RDMA/hns: Remove unused abnormal interrupt of type RAS (git-fixes) - RDMA/irdma: Fix misspelling of 'accept*' (git-fixes) - RDMA/mad: Improve handling of timed out WRs of mad agent (git-fixes) - RDMA/mana_ib: use the correct page size for mapping user-mode doorbell page (git-fixes). - RDMA/mana_ib: use the correct page table index based on hardware page size (git-fixes). - RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down (git-fixes) - RDMA/rtrs-srv: Avoid null pointer deref during path establishment (git-fixes) - RDMA/srpt: Make slab cache names unique (git-fixes) - SUNRPC: Fix integer overflow in decode_rc_list() (git-fixes). - SUNRPC: Fixup gss_status tracepoint error output (git-fixes). - SUNRPC: clnt.c: Remove misleading comment (git-fixes). - USB: appledisplay: close race between probe and completion handler (stable-fixes). - USB: misc: cypress_cy7c63: check for short transfer (stable-fixes). - USB: misc: yurex: fix race between read and write (stable-fixes). - USB: serial: option: add Telit FN920C04 MBIM compositions (stable-fixes). - USB: serial: option: add support for Quectel EG916Q-GL (stable-fixes). - USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes). - Use pahole -j1 option for reproducible builds (bsc#1230414 bsc#1229450). - add bug reference for a mana change (bsc#1229769). - add bug references to existing mana changes (bsc#1232033, bsc#1232034, bsc#1232036). - afs: Revert 'afs: Hide silly-rename files from userspace' (git-fixes). - arm64: cputype: Add Neoverse-N3 definitions (git-fixes) - arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes). - arm64: errata: Expand speculative SSBS workaround once more (git-fixes) - arm64: esr: Define ESR_ELx_EC_* constants as UL (git-fixes) - arm64: probes: Fix simulate_ldr*_literal() (git-fixes) - arm64: probes: Fix uprobes for big-endian kernels (git-fixes) - arm64: probes: Remove broken LDR (literal) uprobe support (git-fixes) - block: print symbolic error name instead of error code (bsc#1231872). - bpf, lsm: Add disabled BPF LSM hook list (git-fixes). - bpf, net: Fix a potential race in do_sock_getsockopt() (git-fixes). - bpf, verifier: Correct tail_call_reachable for bpf prog (git-fixes). - bpf, x64: Remove tail call detection (git-fixes). - bpf,perf: Fix perf_event_detach_bpf_prog error handling (git-fixes). - bpf: Add --skip_encoding_btf_inconsistent_proto, --btf_gen_optimized to pahole flags for v1.25 (bsc#1230414 bsc#1229450). - bpf: Allow helpers to accept pointers with a fixed size (git-fixes). - bpf: Check for helper calls in check_subprogs() (git-fixes). - bpf: Fix bpf_strtol and bpf_strtoul helpers for 32bit (git-fixes). - bpf: Fix helper writes to read-only maps (git-fixes). - bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation (bsc#1231375). - bpf: Fix tailcall cases in test_bpf (git-fixes). - bpf: Improve check_raw_mode_ok test for MEM_UNINIT-tagged types (git-fixes). - bpf: Remove truncation test in bpf_strtol and bpf_strtoul helpers (git-fixes). - bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error (git-fixes). - bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos (git-fixes). - btf, scripts: Exclude Rust CUs with pahole (bsc#1230414 bsc#1229450). - bus: integrator-lm: fix OF node leak in probe() (git-fixes). - ceph: fix cap ref leak via netfs init_request (bsc#1231383). - char: tpm: Fix possible memory leak in tpm_bios_measurements_open() (git-fixes). - clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885). - clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885). - comedi: ni_routing: tools: Check when the file could not be opened (stable-fixes). - cpufreq/amd-pstate: Fix amd_pstate mode switch on shared memory systems (git-fixes). - crypto: hisilicon - Remove pci_aer_clear_nonfatal_status() call (bsc#1232075) - crypto: hisilicon/qm - re-enable communicate interrupt before notifying PF (bsc#1232075) - debugfs: fix automount d_fsdata usage (git-fixes). - dn_route: set rt neigh to blackhole_netdev instead of loopback_dev in ifdown (bsc#1216813). - drbd: Add NULL check for net_conf to prevent dereference in state validation (git-fixes). - drbd: Fix atomicity violation in drbd_uuid_set_bm() (git-fixes). - driver core: bus: Return -EIO instead of 0 when show/store invalid bus attribute (stable-fixes). - drm/amd/amdgpu: Fix double unlock in amdgpu_mes_add_ring (git-fixes). - drm/amd/display: Add null check for 'afb' in amdgpu_dm_plane_handle_cursor_update (v2) (stable-fixes). - drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (stable-fixes). - drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes). - drm/amd/display: Check link_res->hpo_dp_link_enc before using it (bsc#1231944) - drm/amd/display: Check null pointer before dereferencing se (stable-fixes). - drm/amd/display: Check null pointers before using dc->clk_mgr (stable-fixes). - drm/amd/display: Check stream before comparing them (stable-fixes). - drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes). - drm/amd/display: Fix index out of bounds in DCN30 color transformation (stable-fixes). - drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation (stable-fixes). - drm/amd/display: Fix index out of bounds in degamma hardware format translation (stable-fixes). - drm/amd/display: Fix system hang while resume with TBT monitor (stable-fixes). - drm/amd/display: Handle null 'stream_status' in 'planes_changed_for_existing_stream' (stable-fixes). - drm/amd/display: Initialize get_bytes_per_element's default to 1 (stable-fixes). - drm/amd/display: Round calculated vtotal (stable-fixes). - drm/amd/display: Validate backlight caps are sane (stable-fixes). - drm/amd/pm: ensure the fw_info is not null before using it (stable-fixes). - drm/amd: Guard against bad data for ATIF ACPI method (git-fixes). - drm/amdgpu: Replace one-element array with flexible-array member (stable-fixes). - drm/amdgpu: add raven1 gfxoff quirk (stable-fixes). - drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes). - drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes). - drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes). - drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes). - drm/amdgpu: properly handle vbios fake edid sizing (git-fixes). - drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes). - drm/msm/dpu: do not always program merge_3d block (git-fixes). - drm/msm/dpu: make sure phys resources are properly initialized (git-fixes). - drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate calculation (git-fixes). - drm/msm: Allocate memory for disp snapshot with kvzalloc() (git-fixes). - drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() (git-fixes). - drm/printer: Allow NULL data in devcoredump printer (stable-fixes). - drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes). - drm/radeon: Fix encoder->possible_clones (git-fixes). - drm/radeon: Replace one-element array with flexible-array member (stable-fixes). - drm/radeon: properly handle vbios fake edid sizing (git-fixes). - drm/rockchip: define gamma registers for RK3399 (stable-fixes). - drm/rockchip: support gamma control on RK3399 (stable-fixes). - drm/sched: Add locking to drm_sched_entity_modify_sched (git-fixes). - drm/v3d: Stop the active perfmon before being destroyed (git-fixes). - drm/vc4: Stop the active perfmon before being destroyed (git-fixes). - drm/vmwgfx: Handle surface check failure correctly (git-fixes). - drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS (git-fixes). - drm: komeda: Fix an issue related to normalized zpos (stable-fixes). - efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption (stable-fixes). - erofs: avoid consecutive detection for Highmem memory (git-fixes). - erofs: avoid infinite loop in z_erofs_do_read_page() when reading beyond EOF (git-fixes). - erofs: fix pcluster use-after-free on UP platforms (git-fixes). - erofs: fix potential overflow calculating xattr_isize (git-fixes). - erofs: stop parsing non-compact HEAD index if clusterofs is invalid (git-fixes). - exportfs: use pr_debug for unreachable debug statements (git-fixes). - ext4: fix slab-use-after-free in ext4_split_extent_at() (bsc#1232201) - fat: fix uninitialized variable (git-fixes). - fbdev: pxafb: Fix possible use after free in pxafb_task() (stable-fixes). - fbdev: sisfb: Fix strbuf array overflow (stable-fixes). - fgraph: Change the name of cpuhp state to 'fgraph:online' (git-fixes). - fgraph: Fix missing unlock in register_ftrace_graph() (git-fixes). - fgraph: Use CPU hotplug mechanism to initialize idle shadow stacks (git-fixes). - filelock: fix potential use-after-free in posix_lock_inode (git-fixes). - firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes). - fs/namespace: fnic: Switch to use %ptTd (git-fixes). - fs/pipe: Fix lockdep false-positive in watchqueue pipe_write() (git-fixes). - fs: Fix file_set_fowner LSM hook inconsistencies (git-fixes). - gpio: aspeed: Add the flush write to ensure the write complete (git-fixes). - gpio: aspeed: Use devm_clk api to manage clock source (git-fixes). - gpio: davinci: fix lazy disable (git-fixes). - hid: intel-ish-hid: Fix uninitialized variable 'rv' in ish_fw_xfer_direct_dma (git-fixes). - hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event (git-fixes). - hwmon: (adm9240) Add missing dependency on REGMAP_I2C (git-fixes). - hwmon: (tmp513) Add missing dependency on REGMAP_I2C (git-fixes). - i2c: i801: Use a different adapter-name for IDF adapters (stable-fixes). - i2c: imx-lpi2c: return -EINVAL when i2c peripheral clk does not work (bsc#1227885). - i2c: imx-lpi2c: use bulk clk API (bsc#1227885). - i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume (git-fixes). - i2c: xiic: Fix RX IRQ busy check (stable-fixes). - i2c: xiic: Fix broken locking on tx_msg (stable-fixes). - i2c: xiic: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes). - i2c: xiic: Switch from waitqueue to completion (stable-fixes). - i2c: xiic: Try re-initialization on bus busy timeout (git-fixes). - i2c: xiic: Use devm_clk_get_enabled() (stable-fixes). - i2c: xiic: improve error message when transfer fails to start (stable-fixes). - i2c: xiic: xiic_xfer(): Fix runtime PM leak on error path (git-fixes). - ice: Unbind the workqueue (bsc#1231344). - iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig (git-fixes). - iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig (git-fixes). - iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig (git-fixes). - iio: hid-sensors: Fix an error handling path in _hid_sensor_set_report_latency() (git-fixes). - iio: light: opt3001: add missing full-scale range value (git-fixes). - iio: light: veml6030: fix ALS sensor resolution (git-fixes). - iio: light: veml6030: fix IIO device retrieval from embedded device (git-fixes). - iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes). - iommu/vt-d: Always reserve a domain ID for identity setup (git-fixes). - ipv6: blackhole_netdev needs snmp6 counters (bsc#1216813). - ipv6: give an IPv6 dev to blackhole_netdev (bsc#1216813). - jfs: Fix sanity check in dbMount (git-fixes). - jfs: Fix uaf in dbFreeBits (git-fixes). - jfs: Fix uninit-value access of new_ea in ea_buffer (git-fixes). - jfs: UBSAN: shift-out-of-bounds in dbFindBits (git-fixes). - jfs: check if leafidx greater than num leaves per dmap tree (git-fixes). - kABI: bpf: enum bpf_{type_flag,arg_type} kABI workaround (git-fixes). - kABI: bpf: struct bpf_func_proto kABI workaround (git-fixes). - kab: fix after net: add more sanity check in virtio_net_hdr_to_skb() (git-fixes). - kabi fix of KVM: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes). - kabi: fix after KVM: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes). - kabi: fix after kvm: add guest_state_{enter,exit}_irqoff() (git-fixes). - kbuild, bpf: Use test-ge check for v1.25-only pahole (bsc#1230414 bsc#1229450). - kbuild,bpf: Add module-specific pahole flags for distilled base BTF (bsc#1230414 bsc#1229450). - kbuild,bpf: Switch to using --btf_features for pahole v1.26 and later (bsc#1230414 bsc#1229450). - kbuild: add test-{ge,gt,le,lt} macros (bsc#1230414 bsc#1229450). - kbuild: avoid too many execution of scripts/pahole-flags.sh (bsc#1230414 bsc#1229450). - kbuild: bpf: Tell pahole to DECL_TAG kfuncs (bsc#1230414 bsc#1229450). - kvm/arm64: rework guest entry logic (git-fixes). - kvm: Add support for arch compat vm ioctls (git-fixes). - kvm: add guest_state_{enter,exit}_irqoff() (git-fixes). - media: videobuf2-core: clear memory related fields in __vb2_plane_dmabuf_put() (stable-fixes). - module: abort module loading when sysfs setup suffer errors (git-fixes). - nbd: fix race between timeout and normal completion (bsc#1230918). - net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX (bsc#1226797) - net: add more sanity check in virtio_net_hdr_to_skb() (git-fixes). - net: mana: Implement get_ringparam/set_ringparam for mana (bsc#1229891). - net: mana: Improve mana_set_channels() in low mem conditions (bsc#1230289). - net: socket: suppress unused warning (git-fixes). - net: test for not too small csum_start in virtio_net_hdr_to_skb() (git-fixes). - net: usb: usbnet: fix name regression (git-fixes). - netdevsim: use cond_resched() in nsim_dev_trap_report_work() (git-fixes). - nfs: fix memory leak in error path of nfs4_do_reclaim (git-fixes). - nfsd: call cache_put if xdr_reserve_space returns NULL (git-fixes). - nfsd: fix delegation_blocked() to block correctly for at least 30 seconds (git-fixes). - nfsd: fix refcount leak when file is unhashed after being found (git-fixes). - nfsd: map the EBADMSG to nfserr_io to avoid warning (git-fixes). - nfsd: remove unneeded EEXIST error check in nfsd_do_file_acquire (git-fixes). - nfsd: return -EINVAL when namelen is 0 (git-fixes). - nilfs2: fix kernel bug due to missing clearing of buffer delay flag (git-fixes). - nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error (git-fixes). - ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir() (git-fixes). - ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (stable-fixes). - nvme-multipath: system fails to create generic nvme device (git-fixes). - nvme-pci: qdepth 1 quirk (git-fixes). - nvmet-auth: assign dh_key to NULL after kfree_sensitive (git-fixes). - ocfs2: fix the la space leak when unmounting an ocfs2 volume (git-fixes). - ocfs2: fix uninit-value in ocfs2_get_block() (git-fixes). - ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (git-fixes). - parport: Proper fix for array out-of-bounds access (git-fixes). - platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes). - platform/x86: touchscreen_dmi: add nanote-next quirk (stable-fixes). - power: reset: brcmstb: Do not go into infinite loop if reset fails (stable-fixes). - powerpc/64: Convert patch_instruction() to patch_u32() (bsc#1194869). - powerpc/boot: Handle allocation failure in simple_realloc() (bsc#1194869). - powerpc/boot: Only free if realloc() succeeds (bsc#1194869). - powerpc/code-patching: Add generic memory patching (bsc#1194869). - powerpc/code-patching: Consolidate and cache per-cpu patching context (bsc#1194869). - powerpc/code-patching: Do not call is_vmalloc_or_module_addr() without CONFIG_MODULES (bsc#1194869). - powerpc/code-patching: Fix error handling in do_patch_instruction() (bsc#1194869). - powerpc/code-patching: Fix oops with DEBUG_VM enabled (bsc#1194869). - powerpc/code-patching: Fix unmap_patch_area() error handling (bsc#1194869). - powerpc/code-patching: Perform hwsync in __patch_instruction() in case of failure (bsc#1194869). - powerpc/code-patching: Pre-map patch area (bsc#1194869). - powerpc/code-patching: Remove #ifdef CONFIG_STRICT_KERNEL_RWX (bsc#1194869). - powerpc/code-patching: Remove pr_debug()/pr_devel() messages and fix check() (bsc#1194869). - powerpc/code-patching: Reorganise do_patch_instruction() to ease error handling (bsc#1194869). - powerpc/code-patching: Speed up page mapping/unmapping (bsc#1194869). - powerpc/code-patching: Use WARN_ON and fix check in poking_init (bsc#1194869). - powerpc/code-patching: Use jump_label to check if poking_init() is done (bsc#1194869). - powerpc/code-patching: Use temporary mm for Radix MMU (bsc#1194869). - powerpc/code-patching: introduce patch_instructions() (bsc#1194869). - powerpc/ftrace: Use patch_instruction() return directly (bsc#1194869). - powerpc/imc-pmu: Fix use of mutex in IRQs disabled section (bsc#1054914 git-fixes). - powerpc/imc-pmu: Use the correct spinlock initializer (bsc#1054914 git-fixes). - powerpc/inst: Refactor ___get_user_instr() (bsc#1194869). - powerpc/lib: Add __init attribute to eligible functions (bsc#1194869). - powerpc/tlb: Add local flush for page given mm_struct and psize (bsc#1194869). - powerpc/vdso: Fix VDSO data access when running in a non-root time namespace (bsc#1194869). - powerpc/vdso: Merge vdso64 and vdso32 into a single directory (bsc#1194869). - powerpc/vdso: Rework VDSO32 makefile to add a prefix to object files (bsc#1194869). - powerpc/vdso: augment VDSO32 functions to support 64 bits build (bsc#1194869). - powerpc/xics: Check return value of kasprintf in icp_native_map_one_cpu (bsc#1194869). - powerpc/xmon: Fix disassembly CPU feature checks (bsc#1065729). - powerpc: Allow clearing and restoring registers independent of saved breakpoint state (bsc#1194869). - rcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow (bsc#1226631). - rcu: Add rcutree.nohz_full_patience_delay to reduce nohz_full (bsc#1231327) - s390/mm: Add cond_resched() to cmm_alloc/free_pages() (bsc#1228747). - s390/sclp_vt220: Convert newlines to CRLF instead of LFCR (git-fixes bsc#1232632). - sched/isolation: Prevent boot crash when the boot CPU is (bsc#1231327) - scsi: NCR5380: Check for phase match during PDMA fixup (git-fixes). - scsi: aacraid: Rearrange order of struct aac_srb_unit (git-fixes). - scsi: core: Fix the return value of scsi_logical_block_count() (git-fixes). - scsi: core: Handle devices which return an unusually large VPD page count (git-fixes). - scsi: core: alua: I/O errors for ALUA state transitions (git-fixes). - scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del() (git-fixes). - scsi: fnic: Move flush_work initialization out of if block (bsc#1230055). - scsi: hpsa: Fix allocation size for Scsi_Host private data (git-fixes). - scsi: libsas: Fix exp-attached device scan after probe failure scanned in again after probe failed (git-fixes). - scsi: libsas: Fix the failure of adding phy with zero-address to port (git-fixes). - scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in lpfc_els_flush_cmd() (bsc#1232757). - scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance (bsc#1232757). - scsi: lpfc: Fix kref imbalance on fabric ndlps from dev_loss_tmo handler (bsc#1232757). - scsi: lpfc: Remove trailing space after \n newline (bsc#1232757). - scsi: lpfc: Restrict support for 32 byte CDBs to specific HBAs (git-fixes). - scsi: lpfc: Revise TRACE_EVENT log flag severities from KERN_ERR to KERN_WARNING (bsc#1232757). - scsi: lpfc: Support loopback tests with VMID enabled (bsc#1232757). - scsi: lpfc: Update lpfc version to 14.4.0.5 (bsc#1232757). - scsi: lpfc: Update phba link state conditional before sending CMF_SYNC_WQE (bsc#1232757). - scsi: mac_scsi: Disallow bus errors during PDMA send (git-fixes). - scsi: mac_scsi: Refactor polling loop (git-fixes). - scsi: mac_scsi: Revise printk(KERN_DEBUG ...) messages (git-fixes). - scsi: mpi3mr: Avoid IOMMU page faults on REPORT ZONES (git-fixes). - scsi: mpi3mr: Fix ATA NCQ priority support (git-fixes). - scsi: mpt3sas: Avoid IOMMU page faults on REPORT ZONES (git-fixes). - scsi: qedf: Set qed_slowpath_params to zero before use (git-fixes). - scsi: smartpqi: correct stream detection (git-fixes). - scsi: smartpqi: revert propagate-the-multipath-failure-to-SML-quickly (git-fixes). - scsi: spi: Fix sshdr use (git-fixes). - scsi: wd33c93: Do not use stale scsi_pointer value (git-fixes). - selftests/bpf: Add a test case to write mtu result into .rodata (git-fixes). - selftests/bpf: Add a test case to write strtol result into .rodata (git-fixes). - selftests/bpf: Fix ARG_PTR_TO_LONG {half-,}uninitialized test (git-fixes). - selftests/bpf: Rename ARG_PTR_TO_LONG test description (git-fixes). - selftests/bpf: test for malformed BPF_CORE_TYPE_ID_LOCAL relocation (git-fixes). - spi: bcm63xx: Enable module autoloading (stable-fixes). - spi: bcm63xx: Fix module autoloading (git-fixes). - spi: lpspi: Silence error message upon deferred probe (stable-fixes). - spi: lpspi: Simplify some error message (git-fixes). - spi: lpspi: release requested DMA channels (stable-fixes). - spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes). - spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes). - spi: s3c64xx: fix timeout counters in flush_fifo (git-fixes). - spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes). - spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes). - spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes). - static_call: Do not make __static_call_return0 static (git-fixes). - tracing/hwlat: Fix a race during cpuhp processing (git-fixes). - tracing/uprobes: Use trace_event_buffer_reserve() helper (git-fixes). - tracing: Consider the NULL character when validating the event length (git-fixes). - uprobe: avoid out-of-bounds memory access of fetching args (git-fixes). - uprobes: encapsulate preparation of uprobe args buffer (git-fixes). - usb: chipidea: udc: enable suspend interrupt after usb reset (stable-fixes). - usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the Crashkernel Scenario (stable-fixes). - usb: dwc3: core: Stop processing of pending events if controller is halted (git-fixes). - usb: gadget: core: force synchronous registration (git-fixes). - usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip (stable-fixes). - usb: typec: altmode should keep reference to parent (git-fixes). - usb: xhci: Fix problem with xhci resume from suspend (stable-fixes). - usb: yurex: Fix inconsistent locking bug in yurex_read() (git-fixes). - usb: yurex: Replace snprintf() with the safer scnprintf() variant (stable-fixes). - usbnet: ipheth: fix carrier detection in modes 1 and 4 (stable-fixes). - vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (git-fixes). - vhost_vdpa: assign irq bypass producer token correctly (git-fixes). - virtio-net: synchronize probe with ndo_set_features (git-fixes). - virtio_console: fix misc probe bugs (git-fixes). - virtio_net: fixing XDP for fully checksummed packets handling (git-fixes). - vmxnet3: add command to allow disabling of offloads (bsc#1226498). - vmxnet3: add latency measurement support in vmxnet3 (bsc#1226498). - vmxnet3: prepare for version 9 changes (bsc#1226498). - vmxnet3: update to version 9 (bsc#1226498). - vsock/virtio: fix packet delivery to tap device (git-fixes). - wifi: ath11k: fix array out-of-bound access in SoC stats (stable-fixes). - wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes). - wifi: ath9k: fix parameter check in ath9k_init_debug() (stable-fixes). - wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats() (stable-fixes). - wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit (stable-fixes). - wifi: iwlwifi: clear trans->state earlier upon error (stable-fixes). - wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes). - wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes). - wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext() (stable-fixes). - wifi: rtw88: select WANT_DEV_COREDUMP (stable-fixes). - workqueue: Avoid using isolated cpus' timers on (bsc#1231327) - workqueue: mark power efficient workqueue as unbounded if (bsc#1231327) - x86/bugs: Do not use UNTRAIN_RET with IBPB on entry (git-fixes). - x86/bugs: Skip RSB fill at VMEXIT (git-fixes). - x86/cpufeatures: Add a IBPB_NO_RET BUG flag (git-fixes). - x86/cpufeatures: Define X86_FEATURE_AMD_IBPB_RET (git-fixes). - x86/entry: Have entry_ibpb() invalidate return predictions (git-fixes). - x86/hyperv: Set X86_FEATURE_TSC_KNOWN_FREQ when Hyper-V provides frequency (git-fixes). - x86/kaslr: Expose and use the end of the physical memory address space (bsc#1230405). - xfrm: set dst dev to blackhole_netdev instead of loopback_dev in ifdown (bsc#1216813). - xhci: Fix incorrect stream context type macro (git-fixes). - xhci: Mitigate failed set dequeue pointer commands (git-fixes).

Patchnames

SUSE-2024-3985,SUSE-SLE-Micro-5.5-2024-3985,SUSE-SLE-Module-Live-Patching-15-SP5-2024-3985,SUSE-SLE-Module-RT-15-SP5-2024-3985,openSUSE-Leap-Micro-5.5-2024-3985,openSUSE-SLE-15.5-2024-3985

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2022-48879: efi: fix NULL-deref in init error path (bsc#1229556).\n- CVE-2022-48956: ipv6: avoid use-after-free in ip6_fragment() (bsc#1231893).\n- CVE-2022-48957: dpaa2-switch: Fix memory leak in dpaa2_switch_acl_entry_add() and dpaa2_switch_acl_entry_remove() (bsc#1231973).\n- CVE-2022-48958: ethernet: aeroflex: fix potential skb leak in greth_init_rings() (bsc#1231889).\n- CVE-2022-48959: net: dsa: sja1105: fix memory leak in sja1105_setup_devlink_regions() (bsc#1231976).\n- CVE-2022-48960: net: hisilicon: Fix potential use-after-free in hix5hd2_rx() (bsc#1231979).\n- CVE-2022-48962: net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (bsc#1232286).\n- CVE-2022-48966: net: mvneta: Fix an out of bounds check (bsc#1232191).\n- CVE-2022-48980: net: dsa: sja1105: avoid out of bounds access in sja1105_init_l2_policing() (bsc#1232233).\n- CVE-2022-48991: mm/khugepaged: fix collapse_pte_mapped_thp() to allow anon_vma (bsc#1232070).\n- CVE-2022-49015: net: hsr: Fix potential use-after-free (bsc#1231938).\n- CVE-2022-49017: tipc: re-fetch skb cb after tipc_msg_validate (bsc#1232004).\n- CVE-2022-49020: net/9p: Fix a potential socket leak in p9_socket_open (bsc#1232175).\n- CVE-2024-36244: net/sched: taprio: extend minimum interval restriction to entire cycle too (bsc#1226797).\n- CVE-2024-36957: octeontx2-af: avoid off-by-one read from userspace (bsc#1225762).\n- CVE-2024-39476: md/raid5: fix deadlock that raid5d() wait for itself to clear MD_SB_CHANGE_PENDING (bsc#1227437).\n- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).\n- CVE-2024-42226: Prevent potential failure in handle_tx_event() for Transfer events without TRB (bsc#1228709).\n- CVE-2024-42253: gpio: pca953x: fix pca953x_irq_bus_sync_unlock race (bsc#1229005).\n- CVE-2024-44931: gpio: prevent potential speculation leaks in gpio_device_get_desc() (bsc#1229837).\n- CVE-2024-44958: sched/smt: Fix unbalance sched_smt_present dec/inc (bsc#1230179).\n- CVE-2024-45016: netem: fix return value if duplicate enqueue fails (bsc#1230429).\n- CVE-2024-45025: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE (bsc#1230456).\n- CVE-2024-46678: bonding: change ipsec_lock from spin lock to mutex (bsc#1230550).\n- CVE-2024-46716: dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (bsc#1230715).\n- CVE-2024-46754: bpf: Remove tst_run from lwt_seg6local_prog_ops (bsc#1230801).\n- CVE-2024-46770: ice: Add netif_device_attach/detach into PF reset flow (bsc#1230763).\n- CVE-2024-46775: drm/amd/display: Validate function returns (bsc#1230774).\n- CVE-2024-46777: udf: Avoid excessive partition lengths (bsc#1230773).\n- CVE-2024-46809: drm/amd/display: Check BIOS images before it is used (bsc#1231148).\n- CVE-2024-46811: drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (bsc#1231179).\n- CVE-2024-46813: drm/amd/display: Check link_index before accessing dc-\u003elinks (bsc#1231191).\n- CVE-2024-46814: drm/amd/display: Check msg_id before processing transcation (bsc#1231193).\n- CVE-2024-46815: drm/amd/display: Check num_valid_sets before accessing reader_wm_sets (bsc#1231195).\n- CVE-2024-46816: drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links (bsc#1231197).\n- CVE-2024-46817: drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (bsc#1231200).\n- CVE-2024-46818: drm/amd/display: Check gpio_id before used as array index (bsc#1231203).\n- CVE-2024-46826: ELF: fix kernel.randomize_va_space double read (bsc#1231115).\n- CVE-2024-46828: uprobes: fix kernel info leak via \u0027[uprobes]\u0027 vma (bsc#1231114).\n- CVE-2024-46834: ethtool: fail closed if we can\u0027t get max channel used in indirection tables (bsc#1231096).\n- CVE-2024-46840: btrfs: clean up our handling of refs == 0 in snapshot delete (bsc#1231105).\n- CVE-2024-46841: btrfs: do not BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() (bsc#1231094).\n- CVE-2024-46848: perf/x86/intel: Limit the period on Haswell (bsc#1231072).\n- CVE-2024-46849: ASoC: meson: axg-card: fix \u0027use-after-free\u0027 (bsc#1231073).\n- CVE-2024-46854: net: dpaa: Pad packets to ETH_ZLEN (bsc#1231084).\n- CVE-2024-46855: netfilter: nft_socket: fix sk refcount leaks (bsc#1231085).\n- CVE-2024-46857: net/mlx5: Fix bridge mode operations when there are no VFs (bsc#1231087).\n- CVE-2024-47660: fsnotify: clear PARENT_WATCHED flags lazily (bsc#1231439).\n- CVE-2024-47661: drm/amd/display: Avoid overflow from uint32_t to uint8_t (bsc#1231496).\n- CVE-2024-47664: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware (bsc#1231442).\n- CVE-2024-47668: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (bsc#1231502).\n- CVE-2024-47672: wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (bsc#1231540).\n- CVE-2024-47673: wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (bsc#1231539).\n- CVE-2024-47674: mm: avoid leaving partial pfn mappings around in error case (bsc#1231673).\n- CVE-2024-47684: tcp: check skb is non-NULL in tcp_rto_delta_us() (bsc#1231987).\n- CVE-2024-47685: netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() (bsc#1231998).\n- CVE-2024-47692: nfsd: return -EINVAL when namelen is 0 (bsc#1231857).\n- CVE-2024-47704: drm/amd/display: Check link_res-\u003ehpo_dp_link_enc before using it (bsc#1231944).\n- CVE-2024-47705: block: fix potential invalid pointer dereference in blk_add_partition (bsc#1231872).\n- CVE-2024-47706: block, bfq: fix possible UAF for bfqq-\u003ebic with merge chain (bsc#1231942).\n- CVE-2024-47707: ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev() (bsc#1231935).\n- CVE-2024-47710: sock_map: Add a cond_resched() in sock_hash_free() (bsc#1232049).\n- CVE-2024-47720: drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (bsc#1232043).\n- CVE-2024-47727: x86/tdx: Fix \u0027in-kernel MMIO\u0027 check (bsc#1232116).\n- CVE-2024-47730: crypto: hisilicon/qm - inject error before stopping queue (bsc#1232075).\n- CVE-2024-47738: wifi: mac80211: do not use rate mask for offchannel TX either (bsc#1232114).\n- CVE-2024-47739: padata: use integer wrap around to prevent deadlock on seq_nr overflow (bsc#1232124).\n- CVE-2024-47745: mm: split critical region in remap_file_pages() and invoke LSMs in between (bsc#1232135).\n- CVE-2024-47747: net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition (bsc#1232145).\n- CVE-2024-47748: vhost_vdpa: assign irq bypass producer token correctly (bsc#1232174).\n- CVE-2024-49860: ACPI: sysfs: validate return type of _STR method (bsc#1231861).\n- CVE-2024-49866: tracing/timerlat: Fix a race during cpuhp processing (bsc#1232259).\n- CVE-2024-49881: ext4: update orig_path in ext4_find_extent() (bsc#1232201).\n- CVE-2024-49882: ext4: fix double brelse() the buffer of the extents path (bsc#1232200).\n- CVE-2024-49883: ext4: aovid use-after-free in ext4_ext_insert_extent() (bsc#1232199).\n- CVE-2024-49886: platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug (bsc#1232196).\n- CVE-2024-49890: drm/amd/pm: ensure the fw_info is not null before using it (bsc#1232217).\n- CVE-2024-49892: drm/amd/display: Initialize get_bytes_per_element\u0027s default to 1 (bsc#1232220).\n- CVE-2024-49894: drm/amd/display: Fix index out of bounds in degamma hardware format translation (bsc#1232354).\n- CVE-2024-49896: drm/amd/display: Check stream before comparing them (bsc#1232221).\n- CVE-2024-49897: drm/amd/display: Check phantom_stream before it is used (bsc#1232355).\n- CVE-2024-49899: drm/amd/display: Initialize denominators\u0027 default to 1 (bsc#1232358).\n- CVE-2024-49901: drm/msm/adreno: Assign msm_gpu-\u003epdev earlier to avoid nullptrs (bsc#1232305).\n- CVE-2024-49906: drm/amd/display: Check null pointer before try to access it (bsc#1232332).\n- CVE-2024-49909: drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func (bsc#1232337).\n- CVE-2024-49911: drm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func (bsc#1232366).\n- CVE-2024-49914: drm/amd/display: Add null check for pipe_ctx-\u003eplane_state in (bsc#1232369).\n- CVE-2024-49917: drm/amd/display: Add NULL check for clk_mgr and clk_mgr-\u003efuncs in dcn30_init_hw (bsc#1231965).\n- CVE-2024-49918: drm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer (bsc#1231967).\n- CVE-2024-49919: drm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer (bsc#1231968).\n- CVE-2024-49920: drm/amd/display: Check null pointers before multiple uses (bsc#1232313).\n- CVE-2024-49922: drm/amd/display: Check null pointers before using them (bsc#1232374).\n- CVE-2024-49923: drm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags (bsc#1232361).\n- CVE-2024-49929: wifi: iwlwifi: mvm: avoid NULL pointer dereference (bsc#1232253).\n- CVE-2024-49930: wifi: ath11k: fix array out-of-bound access in SoC stats (bsc#1232260).\n- CVE-2024-49933: blk_iocost: fix more out of bound shifts (bsc#1232368).\n- CVE-2024-49936: net/xen-netback: prevent UAF in xenvif_flush_hash() (bsc#1232424).\n- CVE-2024-49939: wifi: rtw89: avoid to add interface to list twice when SER (bsc#1232381).\n- CVE-2024-49946: ppp: do not assume bh is held in ppp_channel_bridge_input() (bsc#1232164).\n- CVE-2024-49949: net: avoid potential underflow in qdisc_pkt_len_init() with UFO (bsc#1232160).\n- CVE-2024-49954: static_call: Replace pointless WARN_ON() in static_call_module_notify() (bsc#1232155).\n- CVE-2024-49955: ACPI: battery: Fix possible crash when unregistering a battery hook (bsc#1232154).\n- CVE-2024-49958: ocfs2: reserve space for inline xattr before attaching reflink tree (bsc#1232151).\n- CVE-2024-49959: jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error (bsc#1232149).\n- CVE-2024-49960: ext4: fix timer use-after-free on failed mount (bsc#1232395).\n- CVE-2024-49962: ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() (bsc#1232314).\n- CVE-2024-49967: ext4: no need to continue when the number of entries is 1 (bsc#1232140).\n- CVE-2024-49969: drm/amd/display: Fix index out of bounds in DCN30 color transformation (bsc#1232519).\n- CVE-2024-49973: r8169: add tally counter fields added with RTL8125 (bsc#1232105).\n- CVE-2024-49974: NFSD: Force all NFSv4.2 COPY requests to be synchronous (bsc#1232383).\n- CVE-2024-49975: uprobes: fix kernel info leak via \u0027[uprobes]\u0027 vma (bsc#1232104).\n- CVE-2024-49991: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (bsc#1232282).\n- CVE-2024-49993: iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0 count (bsc#1232316).\n- CVE-2024-49995: tipc: guard against string buffer overrun (bsc#1232432).\n- CVE-2024-49996: cifs: Fix buffer overflow when parsing NFS reparse points (bsc#1232089).\n- CVE-2024-50000: net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() (bsc#1232085).\n- CVE-2024-50001: net/mlx5: Fix error path in multi-packet WQE transmit (bsc#1232084).\n- CVE-2024-50002: static_call: Handle module init failure correctly in static_call_del_module() (bsc#1232083).\n- CVE-2024-50006: ext4: fix i_data_sem unlock order in ext4_ind_migrate() (bsc#1232442).\n- CVE-2024-50014: ext4: fix access to uninitialised lock in fc replay path (bsc#1232446).\n- CVE-2024-50019: kthread: unpark only parked kthread (bsc#1231990).\n- CVE-2024-50024: net: Fix an unsafe loop on the list (bsc#1231954).\n- CVE-2024-50028: thermal: core: Reference count the zone in thermal_zone_get_by_id() (bsc#1231950).\n- CVE-2024-50033: slip: make slhc_remember() more robust against malicious packets (bsc#1231914).\n- CVE-2024-50035: ppp: fix ppp_async_encode() illegal access (bsc#1232392).\n- CVE-2024-50041: i40e: Fix macvlan leak by synchronizing access to mac_filter_hash (bsc#1231907).\n- CVE-2024-50045: netfilter: br_netfilter: fix panic with metadata_dst skb (bsc#1231903).\n- CVE-2024-50046: kabi fix for NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies() (bsc#1231902).\n- CVE-2024-50047: smb: client: fix UAF in async decryption (bsc#1232418).\n- CVE-2024-50048: fbcon: Fix a NULL pointer dereference issue in fbcon_putcs (bsc#1232310).\n- CVE-2024-50055: driver core: bus: Fix double free in driver API bus_register() (bsc#1232329).\n- CVE-2024-50058: serial: protect uart_port_dtr_rts() in uart_shutdown() too (bsc#1232285).\n- CVE-2024-50059: ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (bsc#1232345).\n- CVE-2024-50061: i3c: master: cdns: Fix use after free vulnerability in cdns_i3c_master Driver Due to Race Condition (bsc#1232263).\n- CVE-2024-50063: kABI: bpf: struct bpf_map kABI workaround (bsc#1232435).\n- CVE-2024-50081: blk-mq: setup queue -\u003etag_set before initializing hctx (bsc#1232501).\n\nThe following non-security bugs were fixed:\n\n- ACPI: EC: Do not release locks during operation region accesses (stable-fixes).\n- ACPI: PAD: fix crash in exit_round_robin() (stable-fixes).\n- ACPI: PRM: Clean up guid type in struct prm_handler_info (git-fixes).\n- ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context (git-fixes).\n- ACPI: battery: Call power_supply_changed() when adding hooks (bsc#1232154)\n- ACPI: battery: Simplify battery hook locking (bsc#1232154)\n- ACPI: resource: Add Asus ExpertBook B2502CVA to irq1_level_low_skip_override[] (stable-fixes).\n- ACPI: resource: Add Asus Vivobook X1704VAP to irq1_level_low_skip_override[] (stable-fixes).\n- ACPI: resource: Add another DMI match for the TongFang GMxXGxx (stable-fixes).\n- ACPICA: Fix memory leak if acpi_ps_get_next_field() fails (stable-fixes).\n- ACPICA: Fix memory leak if acpi_ps_get_next_namepath() fails (stable-fixes).\n- ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() (stable-fixes).\n- ACPICA: iasl: handle empty connection_node (stable-fixes).\n- ALSA: asihpi: Fix potential OOB array access (stable-fixes).\n- ALSA: core: add isascii() check to card ID generator (stable-fixes).\n- ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() (git-fixes).\n- ALSA: hda/conexant - Fix audio routing for HP EliteOne 1000 G2 (stable-fixes).\n- ALSA: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne 1000 G2 (git-fixes).\n- ALSA: hda/conexant: Fix conflicting quirk for System76 Pangolin (git-fixes).\n- ALSA: hda/cs8409: Fix possible NULL dereference (git-fixes).\n- ALSA: hda/generic: Unconditionally prefer preferred_dacs pairs (git-fixes).\n- ALSA: hda/realtek - FIxed ALC285 headphone no sound (stable-fixes).\n- ALSA: hda/realtek - Fixed ALC256 headphone no sound (stable-fixes).\n- ALSA: hda/realtek: Add a quirk for HP Pavilion 15z-ec200 (stable-fixes).\n- ALSA: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9 (stable-fixes).\n- ALSA: hda/realtek: Fix the push button function for the ALC257 (git-fixes).\n- ALSA: hda/realtek: Update default depop procedure (git-fixes).\n- ALSA: hda: Fix kctl-\u003eid initialization (git-fixes).\n- ALSA: hda: cs35l41: fix module autoloading (git-fixes).\n- ALSA: hdsp: Break infinite MIDI input flush loop (stable-fixes).\n- ALSA: line6: add hw monitor volume control to POD HD500X (stable-fixes).\n- ALSA: mixer_oss: Remove some incorrect kfree_const() usages (git-fixes).\n- ALSA: usb-audio: Add delay quirk for VIVO USB-C HEADSET (stable-fixes).\n- ALSA: usb-audio: Add input value sanity checks for standard types (stable-fixes).\n- ALSA: usb-audio: Add logitech Audio profile quirk (stable-fixes).\n- ALSA: usb-audio: Add native DSD support for Luxman D-08u (stable-fixes).\n- ALSA: usb-audio: Define macros for quirk table entries (stable-fixes).\n- ALSA: usb-audio: Replace complex quirk lines with macros (stable-fixes).\n- ASoC: allow module autoloading for table db1200_pids (stable-fixes).\n- ASoC: imx-card: Set card.owner to avoid a warning calltrace if SND=m (git-fixes).\n- ASoC: intel: fix module autoloading (stable-fixes).\n- ASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe() (git-fixes).\n- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).\n- ASoC: soc-pcm: Do not zero TDM masks in __soc_pcm_open() (git-fixes).\n- ASoC: tda7419: fix module autoloading (stable-fixes).\n- Bluetooth: Call iso_exit() on module unload (git-fixes).\n- Bluetooth: ISO: Fix multiple init when debugfs is disabled (git-fixes).\n- Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change (git-fixes).\n- Bluetooth: Remove debugfs directory on module init failure (git-fixes).\n- Bluetooth: bnep: fix wild-memory-access in proto_unregister (git-fixes).\n- Bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).\n- Bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001 (git-fixes).\n- Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE (git-fixes).\n- Drop HD-audio conexant patch that caused a regression on Thinkpad (bsc#1228269)\n- Drop USB dwc2 patch that caused a regression on RPi3 (bsc#1232342)\n- HID: amd_sfh: Switch to device-managed dmam_alloc_coherent() (git-fixes).\n- HID: multitouch: Add support for GT7868Q (stable-fixes).\n- HID: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio (stable-fixes).\n- HID: plantronics: Workaround for an unexcepted opposite volume key (stable-fixes).\n- Input: adp5589-keys - fix NULL pointer dereference (git-fixes).\n- Input: adp5589-keys - fix adp5589_gpio_get_value() (git-fixes).\n- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).\n- Input: goodix - use the new soc_intel_is_byt() helper (stable-fixes).\n- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).\n- KVM: Fix coalesced_mmio_has_room() to avoid premature userspace exit (git-fixes).\n- KVM: Fix lockdep false negative during host resume (git-fixes).\n- KVM: Grab a reference to KVM for VM and vCPU stats file descriptors (git-fixes).\n- KVM: Optimize kvm_make_vcpus_request_mask() a bit (git-fixes).\n- KVM: Pre-allocate cpumasks for kvm_make_all_cpus_request_except() (git-fixes).\n- KVM: Reject overly excessive IDs in KVM_CREATE_VCPU (git-fixes).\n- KVM: SVM: Disallow guest from changing userspace\u0027s MSR_AMD64_DE_CFG value (git-fixes).\n- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).\n- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).\n- KVM: Unconditionally get a ref to /dev/kvm module when creating a VM (git-fixes).\n- KVM: Write the per-page \u0027segment\u0027 when clearing (part of) a guest page (git-fixes).\n- KVM: arm64: Add missing memory barriers when switching to pKVM\u0027s hyp pgd (git-fixes).\n- KVM: arm64: Allow AArch32 PSTATE.M to be restored as System mode (git-fixes).\n- KVM: arm64: Fix AArch32 register narrowing on userspace write (git-fixes).\n- KVM: arm64: GICv4: Do not perform a map to a mapped vLPI (git-fixes).\n- KVM: arm64: Invalidate EL1\u00260 TLB entries for all VMIDs in nvhe hyp init (git-fixes).\n- KVM: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes).\n- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).\n- KVM: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes).\n- KVM: arm64: vgic-its: Test for valid IRQ in MOVALL handler (git-fixes).\n- KVM: arm64: vgic-its: Test for valid IRQ in its_sync_lpi_pending_table() (git-fixes).\n- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).\n- KVM: arm64: vgic-v2: Use cpuid from userspace as vcpu_id (git-fixes).\n- KVM: arm64: vgic-v4: Restore pending state on host userspace write (git-fixes).\n- KVM: eventfd: Fix false positive RCU usage warning (git-fixes).\n- KVM: fix memoryleak in kvm_init() (git-fixes).\n- KVM: s390: Change virtual to physical address access in diag 0x258 handler (git-fixes bsc#1232631).\n- KVM: s390: Fix SORTL and DFLTCC instruction format error in __insn32_query (git-fixes bsc#1231277).\n- KVM: s390: gaccess: Check if guest address is in memslot (git-fixes bsc#1232630).\n- KVM: x86/mmu: Fold rmap_recycle into rmap_add (git-fixes).\n- KVM: x86/mmu: Rename slot_handle_leaf to slot_handle_level_4k (git-fixes).\n- KVM: x86: Use a stable condition around all VT-d PI paths (git-fixes).\n- Makefile.compiler: replace cc-ifversion with compiler-specific macros (bsc#1230414 bsc#1229450).\n- NFS: Avoid unnecessary rescanning of the per-server delegation list (git-fixes).\n- NFSD: Fix NFSv4\u0027s PUTPUBFH operation (git-fixes).\n- NFSD: Mark filecache \u0027down\u0027 if init fails (git-fixes).\n- NFSv3: only use NFS timeout for MOUNT when protocols are compatible (bsc#1231016).\n- NFSv4: Fix clearing of layout segments in layoutreturn (git-fixes).\n- PCI: Add ACS quirk for Qualcomm SA8775P (stable-fixes).\n- PCI: Add function 0 DMA alias quirk for Glenfly Arise chip (stable-fixes).\n- PCI: Fix pci_enable_acs() support for the ACS quirks (bsc#1229019).\n- PCI: Mark Creative Labs EMU20k2 INTx masking as broken (stable-fixes).\n- RDMA/bnxt_re: Add a check for memory allocation (git-fixes)\n- RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (git-fixes)\n- RDMA/bnxt_re: Fix incorrect AVID type in WQE structure (git-fixes)\n- RDMA/bnxt_re: Fix the GID table length (git-fixes)\n- RDMA/bnxt_re: Fix the max CQ WQEs for older adapters (git-fixes)\n- RDMA/bnxt_re: Fix the usage of control path spin locks (git-fixes)\n- RDMA/bnxt_re: Return more meaningful error (git-fixes)\n- RDMA/bnxt_re: synchronize the qp-handle table array (git-fixes)\n- RDMA/cxgb4: Dump vendor specific QP details (git-fixes)\n- RDMA/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP (git-fixes)\n- RDMA/hns: Remove unused abnormal interrupt of type RAS (git-fixes)\n- RDMA/irdma: Fix misspelling of \u0027accept*\u0027 (git-fixes)\n- RDMA/mad: Improve handling of timed out WRs of mad agent (git-fixes)\n- RDMA/mana_ib: use the correct page size for mapping user-mode doorbell page (git-fixes).\n- RDMA/mana_ib: use the correct page table index based on hardware page size (git-fixes).\n- RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down (git-fixes)\n- RDMA/rtrs-srv: Avoid null pointer deref during path establishment (git-fixes)\n- RDMA/srpt: Make slab cache names unique (git-fixes)\n- SUNRPC: Fix integer overflow in decode_rc_list() (git-fixes).\n- SUNRPC: Fixup gss_status tracepoint error output (git-fixes).\n- SUNRPC: clnt.c: Remove misleading comment (git-fixes).\n- USB: appledisplay: close race between probe and completion handler (stable-fixes).\n- USB: misc: cypress_cy7c63: check for short transfer (stable-fixes).\n- USB: misc: yurex: fix race between read and write (stable-fixes).\n- USB: serial: option: add Telit FN920C04 MBIM compositions (stable-fixes).\n- USB: serial: option: add support for Quectel EG916Q-GL (stable-fixes).\n- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).\n- Use pahole -j1 option for reproducible builds (bsc#1230414 bsc#1229450).\n- add bug reference for a mana change (bsc#1229769).\n- add bug references to existing mana changes (bsc#1232033, bsc#1232034, bsc#1232036).\n- afs: Revert \u0027afs: Hide silly-rename files from userspace\u0027 (git-fixes).\n- arm64: cputype: Add Neoverse-N3 definitions (git-fixes)\n- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).\n- arm64: errata: Expand speculative SSBS workaround once more (git-fixes)\n- arm64: esr: Define ESR_ELx_EC_* constants as UL (git-fixes)\n- arm64: probes: Fix simulate_ldr*_literal() (git-fixes)\n- arm64: probes: Fix uprobes for big-endian kernels (git-fixes)\n- arm64: probes: Remove broken LDR (literal) uprobe support (git-fixes)\n- block: print symbolic error name instead of error code (bsc#1231872).\n- bpf, lsm: Add disabled BPF LSM hook list (git-fixes).\n- bpf, net: Fix a potential race in do_sock_getsockopt() (git-fixes).\n- bpf, verifier: Correct tail_call_reachable for bpf prog (git-fixes).\n- bpf, x64: Remove tail call detection (git-fixes).\n- bpf,perf: Fix perf_event_detach_bpf_prog error handling (git-fixes).\n- bpf: Add --skip_encoding_btf_inconsistent_proto, --btf_gen_optimized to pahole flags for v1.25 (bsc#1230414 bsc#1229450).\n- bpf: Allow helpers to accept pointers with a fixed size (git-fixes).\n- bpf: Check for helper calls in check_subprogs() (git-fixes).\n- bpf: Fix bpf_strtol and bpf_strtoul helpers for 32bit (git-fixes).\n- bpf: Fix helper writes to read-only maps (git-fixes).\n- bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation (bsc#1231375).\n- bpf: Fix tailcall cases in test_bpf (git-fixes).\n- bpf: Improve check_raw_mode_ok test for MEM_UNINIT-tagged types (git-fixes).\n- bpf: Remove truncation test in bpf_strtol and bpf_strtoul helpers (git-fixes).\n- bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error (git-fixes).\n- bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos (git-fixes).\n- btf, scripts: Exclude Rust CUs with pahole (bsc#1230414 bsc#1229450).\n- bus: integrator-lm: fix OF node leak in probe() (git-fixes).\n- ceph: fix cap ref leak via netfs init_request (bsc#1231383).\n- char: tpm: Fix possible memory leak in tpm_bios_measurements_open() (git-fixes).\n- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).\n- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).\n- comedi: ni_routing: tools: Check when the file could not be opened (stable-fixes).\n- cpufreq/amd-pstate: Fix amd_pstate mode switch on shared memory systems (git-fixes).\n- crypto: hisilicon - Remove pci_aer_clear_nonfatal_status() call (bsc#1232075)\n- crypto: hisilicon/qm - re-enable communicate interrupt before notifying PF (bsc#1232075)\n- debugfs: fix automount d_fsdata usage (git-fixes).\n- dn_route: set rt neigh to blackhole_netdev instead of loopback_dev in ifdown (bsc#1216813).\n- drbd: Add NULL check for net_conf to prevent dereference in state validation (git-fixes).\n- drbd: Fix atomicity violation in drbd_uuid_set_bm() (git-fixes).\n- driver core: bus: Return -EIO instead of 0 when show/store invalid bus attribute (stable-fixes).\n- drm/amd/amdgpu: Fix double unlock in amdgpu_mes_add_ring (git-fixes).\n- drm/amd/display: Add null check for \u0027afb\u0027 in amdgpu_dm_plane_handle_cursor_update (v2) (stable-fixes).\n- drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (stable-fixes).\n- drm/amd/display: Allow backlight to go below `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT` (stable-fixes).\n- drm/amd/display: Check link_res-\u003ehpo_dp_link_enc before using it (bsc#1231944)\n- drm/amd/display: Check null pointer before dereferencing se (stable-fixes).\n- drm/amd/display: Check null pointers before using dc-\u003eclk_mgr (stable-fixes).\n- drm/amd/display: Check stream before comparing them (stable-fixes).\n- drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination (stable-fixes).\n- drm/amd/display: Fix index out of bounds in DCN30 color transformation (stable-fixes).\n- drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation (stable-fixes).\n- drm/amd/display: Fix index out of bounds in degamma hardware format translation (stable-fixes).\n- drm/amd/display: Fix system hang while resume with TBT monitor (stable-fixes).\n- drm/amd/display: Handle null \u0027stream_status\u0027 in \u0027planes_changed_for_existing_stream\u0027 (stable-fixes).\n- drm/amd/display: Initialize get_bytes_per_element\u0027s default to 1 (stable-fixes).\n- drm/amd/display: Round calculated vtotal (stable-fixes).\n- drm/amd/display: Validate backlight caps are sane (stable-fixes).\n- drm/amd/pm: ensure the fw_info is not null before using it (stable-fixes).\n- drm/amd: Guard against bad data for ATIF ACPI method (git-fixes).\n- drm/amdgpu: Replace one-element array with flexible-array member (stable-fixes).\n- drm/amdgpu: add raven1 gfxoff quirk (stable-fixes).\n- drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit (stable-fixes).\n- drm/amdgpu: enable gfxoff quirk on HP 705G4 (stable-fixes).\n- drm/amdgpu: fix unchecked return value warning for amdgpu_gfx (stable-fixes).\n- drm/amdgpu: prevent BO_HANDLES error from being overwritten (git-fixes).\n- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).\n- drm/amdkfd: Fix resource leak in criu restore queue (stable-fixes).\n- drm/msm/dpu: do not always program merge_3d block (git-fixes).\n- drm/msm/dpu: make sure phys resources are properly initialized (git-fixes).\n- drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate calculation (git-fixes).\n- drm/msm: Allocate memory for disp snapshot with kvzalloc() (git-fixes).\n- drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() (git-fixes).\n- drm/printer: Allow NULL data in devcoredump printer (stable-fixes).\n- drm/radeon/r100: Handle unknown family in r100_cp_init_microcode() (stable-fixes).\n- drm/radeon: Fix encoder-\u003epossible_clones (git-fixes).\n- drm/radeon: Replace one-element array with flexible-array member (stable-fixes).\n- drm/radeon: properly handle vbios fake edid sizing (git-fixes).\n- drm/rockchip: define gamma registers for RK3399 (stable-fixes).\n- drm/rockchip: support gamma control on RK3399 (stable-fixes).\n- drm/sched: Add locking to drm_sched_entity_modify_sched (git-fixes).\n- drm/v3d: Stop the active perfmon before being destroyed (git-fixes).\n- drm/vc4: Stop the active perfmon before being destroyed (git-fixes).\n- drm/vmwgfx: Handle surface check failure correctly (git-fixes).\n- drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS (git-fixes).\n- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).\n- efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption (stable-fixes).\n- erofs: avoid consecutive detection for Highmem memory (git-fixes).\n- erofs: avoid infinite loop in z_erofs_do_read_page() when reading beyond EOF (git-fixes).\n- erofs: fix pcluster use-after-free on UP platforms (git-fixes).\n- erofs: fix potential overflow calculating xattr_isize (git-fixes).\n- erofs: stop parsing non-compact HEAD index if clusterofs is invalid (git-fixes).\n- exportfs: use pr_debug for unreachable debug statements (git-fixes).\n- ext4: fix slab-use-after-free in ext4_split_extent_at() (bsc#1232201)\n- fat: fix uninitialized variable (git-fixes).\n- fbdev: pxafb: Fix possible use after free in pxafb_task() (stable-fixes).\n- fbdev: sisfb: Fix strbuf array overflow (stable-fixes).\n- fgraph: Change the name of cpuhp state to \u0027fgraph:online\u0027 (git-fixes).\n- fgraph: Fix missing unlock in register_ftrace_graph() (git-fixes).\n- fgraph: Use CPU hotplug mechanism to initialize idle shadow stacks (git-fixes).\n- filelock: fix potential use-after-free in posix_lock_inode (git-fixes).\n- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).\n- fs/namespace: fnic: Switch to use %ptTd (git-fixes).\n- fs/pipe: Fix lockdep false-positive in watchqueue pipe_write() (git-fixes).\n- fs: Fix file_set_fowner LSM hook inconsistencies (git-fixes).\n- gpio: aspeed: Add the flush write to ensure the write complete (git-fixes).\n- gpio: aspeed: Use devm_clk api to manage clock source (git-fixes).\n- gpio: davinci: fix lazy disable (git-fixes).\n- hid: intel-ish-hid: Fix uninitialized variable \u0027rv\u0027 in ish_fw_xfer_direct_dma (git-fixes).\n- hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event (git-fixes).\n- hwmon: (adm9240) Add missing dependency on REGMAP_I2C (git-fixes).\n- hwmon: (tmp513) Add missing dependency on REGMAP_I2C (git-fixes).\n- i2c: i801: Use a different adapter-name for IDF adapters (stable-fixes).\n- i2c: imx-lpi2c: return -EINVAL when i2c peripheral clk does not work (bsc#1227885).\n- i2c: imx-lpi2c: use bulk clk API (bsc#1227885).\n- i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume (git-fixes).\n- i2c: xiic: Fix RX IRQ busy check (stable-fixes).\n- i2c: xiic: Fix broken locking on tx_msg (stable-fixes).\n- i2c: xiic: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes).\n- i2c: xiic: Switch from waitqueue to completion (stable-fixes).\n- i2c: xiic: Try re-initialization on bus busy timeout (git-fixes).\n- i2c: xiic: Use devm_clk_get_enabled() (stable-fixes).\n- i2c: xiic: improve error message when transfer fails to start (stable-fixes).\n- i2c: xiic: xiic_xfer(): Fix runtime PM leak on error path (git-fixes).\n- ice: Unbind the workqueue (bsc#1231344).\n- iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig (git-fixes).\n- iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig (git-fixes).\n- iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig (git-fixes).\n- iio: hid-sensors: Fix an error handling path in _hid_sensor_set_report_latency() (git-fixes).\n- iio: light: opt3001: add missing full-scale range value (git-fixes).\n- iio: light: veml6030: fix ALS sensor resolution (git-fixes).\n- iio: light: veml6030: fix IIO device retrieval from embedded device (git-fixes).\n- iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig (git-fixes).\n- iommu/vt-d: Always reserve a domain ID for identity setup (git-fixes).\n- ipv6: blackhole_netdev needs snmp6 counters (bsc#1216813).\n- ipv6: give an IPv6 dev to blackhole_netdev (bsc#1216813).\n- jfs: Fix sanity check in dbMount (git-fixes).\n- jfs: Fix uaf in dbFreeBits (git-fixes).\n- jfs: Fix uninit-value access of new_ea in ea_buffer (git-fixes).\n- jfs: UBSAN: shift-out-of-bounds in dbFindBits (git-fixes).\n- jfs: check if leafidx greater than num leaves per dmap tree (git-fixes).\n- kABI: bpf: enum bpf_{type_flag,arg_type} kABI workaround (git-fixes).\n- kABI: bpf: struct bpf_func_proto kABI workaround (git-fixes).\n- kab: fix after net: add more sanity check in virtio_net_hdr_to_skb() (git-fixes).\n- kabi fix of KVM: arm64: Preserve PSTATE.SS for the guest while single-step is enabled (git-fixes).\n- kabi: fix after KVM: arm64: mixed-width check should be skipped for uninitialized vCPUs (git-fixes).\n- kabi: fix after kvm: add guest_state_{enter,exit}_irqoff() (git-fixes).\n- kbuild, bpf: Use test-ge check for v1.25-only pahole (bsc#1230414 bsc#1229450).\n- kbuild,bpf: Add module-specific pahole flags for distilled base BTF (bsc#1230414 bsc#1229450).\n- kbuild,bpf: Switch to using --btf_features for pahole v1.26 and later (bsc#1230414 bsc#1229450).\n- kbuild: add test-{ge,gt,le,lt} macros (bsc#1230414 bsc#1229450).\n- kbuild: avoid too many execution of scripts/pahole-flags.sh (bsc#1230414 bsc#1229450).\n- kbuild: bpf: Tell pahole to DECL_TAG kfuncs (bsc#1230414 bsc#1229450).\n- kvm/arm64: rework guest entry logic (git-fixes).\n- kvm: Add support for arch compat vm ioctls (git-fixes).\n- kvm: add guest_state_{enter,exit}_irqoff() (git-fixes).\n- media: videobuf2-core: clear memory related fields in __vb2_plane_dmabuf_put() (stable-fixes).\n- module: abort module loading when sysfs setup suffer errors (git-fixes).\n- nbd: fix race between timeout and normal completion (bsc#1230918).\n- net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX (bsc#1226797)\n- net: add more sanity check in virtio_net_hdr_to_skb() (git-fixes).\n- net: mana: Implement get_ringparam/set_ringparam for mana (bsc#1229891).\n- net: mana: Improve mana_set_channels() in low mem conditions (bsc#1230289).\n- net: socket: suppress unused warning (git-fixes).\n- net: test for not too small csum_start in virtio_net_hdr_to_skb() (git-fixes).\n- net: usb: usbnet: fix name regression (git-fixes).\n- netdevsim: use cond_resched() in nsim_dev_trap_report_work() (git-fixes).\n- nfs: fix memory leak in error path of nfs4_do_reclaim (git-fixes).\n- nfsd: call cache_put if xdr_reserve_space returns NULL (git-fixes).\n- nfsd: fix delegation_blocked() to block correctly for at least 30 seconds (git-fixes).\n- nfsd: fix refcount leak when file is unhashed after being found (git-fixes).\n- nfsd: map the EBADMSG to nfserr_io to avoid warning (git-fixes).\n- nfsd: remove unneeded EEXIST error check in nfsd_do_file_acquire (git-fixes).\n- nfsd: return -EINVAL when namelen is 0 (git-fixes).\n- nilfs2: fix kernel bug due to missing clearing of buffer delay flag (git-fixes).\n- nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error (git-fixes).\n- ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir() (git-fixes).\n- ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition (stable-fixes).\n- nvme-multipath: system fails to create generic nvme device (git-fixes).\n- nvme-pci: qdepth 1 quirk (git-fixes).\n- nvmet-auth: assign dh_key to NULL after kfree_sensitive (git-fixes).\n- ocfs2: fix the la space leak when unmounting an ocfs2 volume (git-fixes).\n- ocfs2: fix uninit-value in ocfs2_get_block() (git-fixes).\n- ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (git-fixes).\n- parport: Proper fix for array out-of-bounds access (git-fixes).\n- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).\n- platform/x86: touchscreen_dmi: add nanote-next quirk (stable-fixes).\n- power: reset: brcmstb: Do not go into infinite loop if reset fails (stable-fixes).\n- powerpc/64: Convert patch_instruction() to patch_u32() (bsc#1194869).\n- powerpc/boot: Handle allocation failure in simple_realloc() (bsc#1194869).\n- powerpc/boot: Only free if realloc() succeeds (bsc#1194869).\n- powerpc/code-patching: Add generic memory patching (bsc#1194869).\n- powerpc/code-patching: Consolidate and cache per-cpu patching context (bsc#1194869).\n- powerpc/code-patching: Do not call is_vmalloc_or_module_addr() without CONFIG_MODULES (bsc#1194869).\n- powerpc/code-patching: Fix error handling in do_patch_instruction() (bsc#1194869).\n- powerpc/code-patching: Fix oops with DEBUG_VM enabled (bsc#1194869).\n- powerpc/code-patching: Fix unmap_patch_area() error handling (bsc#1194869).\n- powerpc/code-patching: Perform hwsync in __patch_instruction() in case of failure (bsc#1194869).\n- powerpc/code-patching: Pre-map patch area (bsc#1194869).\n- powerpc/code-patching: Remove #ifdef CONFIG_STRICT_KERNEL_RWX (bsc#1194869).\n- powerpc/code-patching: Remove pr_debug()/pr_devel() messages and fix check() (bsc#1194869).\n- powerpc/code-patching: Reorganise do_patch_instruction() to ease error handling (bsc#1194869).\n- powerpc/code-patching: Speed up page mapping/unmapping (bsc#1194869).\n- powerpc/code-patching: Use WARN_ON and fix check in poking_init (bsc#1194869).\n- powerpc/code-patching: Use jump_label to check if poking_init() is done (bsc#1194869).\n- powerpc/code-patching: Use temporary mm for Radix MMU (bsc#1194869).\n- powerpc/code-patching: introduce patch_instructions() (bsc#1194869).\n- powerpc/ftrace: Use patch_instruction() return directly (bsc#1194869).\n- powerpc/imc-pmu: Fix use of mutex in IRQs disabled section (bsc#1054914 git-fixes).\n- powerpc/imc-pmu: Use the correct spinlock initializer (bsc#1054914 git-fixes).\n- powerpc/inst: Refactor ___get_user_instr() (bsc#1194869).\n- powerpc/lib: Add __init attribute to eligible functions (bsc#1194869).\n- powerpc/tlb: Add local flush for page given mm_struct and psize (bsc#1194869).\n- powerpc/vdso: Fix VDSO data access when running in a non-root time namespace (bsc#1194869).\n- powerpc/vdso: Merge vdso64 and vdso32 into a single directory (bsc#1194869).\n- powerpc/vdso: Rework VDSO32 makefile to add a prefix to object files (bsc#1194869).\n- powerpc/vdso: augment VDSO32 functions to support 64 bits build (bsc#1194869).\n- powerpc/xics: Check return value of kasprintf in icp_native_map_one_cpu (bsc#1194869).\n- powerpc/xmon: Fix disassembly CPU feature checks (bsc#1065729).\n- powerpc: Allow clearing and restoring registers independent of saved breakpoint state (bsc#1194869).\n- rcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow (bsc#1226631).\n- rcu: Add rcutree.nohz_full_patience_delay to reduce nohz_full (bsc#1231327)\n- s390/mm: Add cond_resched() to cmm_alloc/free_pages() (bsc#1228747).\n- s390/sclp_vt220: Convert newlines to CRLF instead of LFCR (git-fixes bsc#1232632).\n- sched/isolation: Prevent boot crash when the boot CPU is (bsc#1231327)\n- scsi: NCR5380: Check for phase match during PDMA fixup (git-fixes).\n- scsi: aacraid: Rearrange order of struct aac_srb_unit (git-fixes).\n- scsi: core: Fix the return value of scsi_logical_block_count() (git-fixes).\n- scsi: core: Handle devices which return an unusually large VPD page count (git-fixes).\n- scsi: core: alua: I/O errors for ALUA state transitions (git-fixes).\n- scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del() (git-fixes).\n- scsi: fnic: Move flush_work initialization out of if block (bsc#1230055).\n- scsi: hpsa: Fix allocation size for Scsi_Host private data (git-fixes).\n- scsi: libsas: Fix exp-attached device scan after probe failure scanned in again after probe failed (git-fixes).\n- scsi: libsas: Fix the failure of adding phy with zero-address to port (git-fixes).\n- scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in lpfc_els_flush_cmd() (bsc#1232757).\n- scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance (bsc#1232757).\n- scsi: lpfc: Fix kref imbalance on fabric ndlps from dev_loss_tmo handler (bsc#1232757).\n- scsi: lpfc: Remove trailing space after \\n newline (bsc#1232757).\n- scsi: lpfc: Restrict support for 32 byte CDBs to specific HBAs (git-fixes).\n- scsi: lpfc: Revise TRACE_EVENT log flag severities from KERN_ERR to KERN_WARNING (bsc#1232757).\n- scsi: lpfc: Support loopback tests with VMID enabled (bsc#1232757).\n- scsi: lpfc: Update lpfc version to 14.4.0.5 (bsc#1232757).\n- scsi: lpfc: Update phba link state conditional before sending CMF_SYNC_WQE (bsc#1232757).\n- scsi: mac_scsi: Disallow bus errors during PDMA send (git-fixes).\n- scsi: mac_scsi: Refactor polling loop (git-fixes).\n- scsi: mac_scsi: Revise printk(KERN_DEBUG ...) messages (git-fixes).\n- scsi: mpi3mr: Avoid IOMMU page faults on REPORT ZONES (git-fixes).\n- scsi: mpi3mr: Fix ATA NCQ priority support (git-fixes).\n- scsi: mpt3sas: Avoid IOMMU page faults on REPORT ZONES (git-fixes).\n- scsi: qedf: Set qed_slowpath_params to zero before use (git-fixes).\n- scsi: smartpqi: correct stream detection (git-fixes).\n- scsi: smartpqi: revert propagate-the-multipath-failure-to-SML-quickly (git-fixes).\n- scsi: spi: Fix sshdr use (git-fixes).\n- scsi: wd33c93: Do not use stale scsi_pointer value (git-fixes).\n- selftests/bpf: Add a test case to write mtu result into .rodata (git-fixes).\n- selftests/bpf: Add a test case to write strtol result into .rodata (git-fixes).\n- selftests/bpf: Fix ARG_PTR_TO_LONG {half-,}uninitialized test (git-fixes).\n- selftests/bpf: Rename ARG_PTR_TO_LONG test description (git-fixes).\n- selftests/bpf: test for malformed BPF_CORE_TYPE_ID_LOCAL relocation (git-fixes).\n- spi: bcm63xx: Enable module autoloading (stable-fixes).\n- spi: bcm63xx: Fix module autoloading (git-fixes).\n- spi: lpspi: Silence error message upon deferred probe (stable-fixes).\n- spi: lpspi: Simplify some error message (git-fixes).\n- spi: lpspi: release requested DMA channels (stable-fixes).\n- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).\n- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).\n- spi: s3c64xx: fix timeout counters in flush_fifo (git-fixes).\n- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).\n- spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled (git-fixes).\n- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).\n- static_call: Do not make __static_call_return0 static (git-fixes).\n- tracing/hwlat: Fix a race during cpuhp processing (git-fixes).\n- tracing/uprobes: Use trace_event_buffer_reserve() helper (git-fixes).\n- tracing: Consider the NULL character when validating the event length (git-fixes).\n- uprobe: avoid out-of-bounds memory access of fetching args (git-fixes).\n- uprobes: encapsulate preparation of uprobe args buffer (git-fixes).\n- usb: chipidea: udc: enable suspend interrupt after usb reset (stable-fixes).\n- usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the Crashkernel Scenario (stable-fixes).\n- usb: dwc3: core: Stop processing of pending events if controller is halted (git-fixes).\n- usb: gadget: core: force synchronous registration (git-fixes).\n- usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip (stable-fixes).\n- usb: typec: altmode should keep reference to parent (git-fixes).\n- usb: xhci: Fix problem with xhci resume from suspend (stable-fixes).\n- usb: yurex: Fix inconsistent locking bug in yurex_read() (git-fixes).\n- usb: yurex: Replace snprintf() with the safer scnprintf() variant (stable-fixes).\n- usbnet: ipheth: fix carrier detection in modes 1 and 4 (stable-fixes).\n- vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (git-fixes).\n- vhost_vdpa: assign irq bypass producer token correctly (git-fixes).\n- virtio-net: synchronize probe with ndo_set_features (git-fixes).\n- virtio_console: fix misc probe bugs (git-fixes).\n- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).\n- vmxnet3: add command to allow disabling of offloads (bsc#1226498).\n- vmxnet3: add latency measurement support in vmxnet3 (bsc#1226498).\n- vmxnet3: prepare for version 9 changes (bsc#1226498).\n- vmxnet3: update to version 9 (bsc#1226498).\n- vsock/virtio: fix packet delivery to tap device (git-fixes).\n- wifi: ath11k: fix array out-of-bound access in SoC stats (stable-fixes).\n- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).\n- wifi: ath9k: fix parameter check in ath9k_init_debug() (stable-fixes).\n- wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats() (stable-fixes).\n- wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit (stable-fixes).\n- wifi: iwlwifi: clear trans-\u003estate earlier upon error (stable-fixes).\n- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).\n- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).\n- wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext() (stable-fixes).\n- wifi: rtw88: select WANT_DEV_COREDUMP (stable-fixes).\n- workqueue: Avoid using isolated cpus\u0027 timers on (bsc#1231327)\n- workqueue: mark power efficient workqueue as unbounded if (bsc#1231327)\n- x86/bugs: Do not use UNTRAIN_RET with IBPB on entry (git-fixes).\n- x86/bugs: Skip RSB fill at VMEXIT (git-fixes).\n- x86/cpufeatures: Add a IBPB_NO_RET BUG flag (git-fixes).\n- x86/cpufeatures: Define X86_FEATURE_AMD_IBPB_RET (git-fixes).\n- x86/entry: Have entry_ibpb() invalidate return predictions (git-fixes).\n- x86/hyperv: Set X86_FEATURE_TSC_KNOWN_FREQ when Hyper-V provides frequency (git-fixes).\n- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1230405).\n- xfrm: set dst dev to blackhole_netdev instead of loopback_dev in ifdown (bsc#1216813).\n- xhci: Fix incorrect stream context type macro (git-fixes).\n- xhci: Mitigate failed set dequeue pointer commands (git-fixes).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2024-3985,SUSE-SLE-Micro-5.5-2024-3985,SUSE-SLE-Module-Live-Patching-15-SP5-2024-3985,SUSE-SLE-Module-RT-15-SP5-2024-3985,openSUSE-Leap-Micro-5.5-2024-3985,openSUSE-SLE-15.5-2024-3985",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_3985-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2024:3985-1",
        "url": "https://www.suse.com/support/update/announcement/2024/suse-su-20243985-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2024:3985-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-November/019814.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1054914",
        "url": "https://bugzilla.suse.com/1054914"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1065729",
        "url": "https://bugzilla.suse.com/1065729"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1194869",
        "url": "https://bugzilla.suse.com/1194869"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1204171",
        "url": "https://bugzilla.suse.com/1204171"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1205796",
        "url": "https://bugzilla.suse.com/1205796"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1206188",
        "url": "https://bugzilla.suse.com/1206188"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1206344",
        "url": "https://bugzilla.suse.com/1206344"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1209290",
        "url": "https://bugzilla.suse.com/1209290"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1210449",
        "url": "https://bugzilla.suse.com/1210449"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1210627",
        "url": "https://bugzilla.suse.com/1210627"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1213034",
        "url": "https://bugzilla.suse.com/1213034"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1216813",
        "url": "https://bugzilla.suse.com/1216813"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1218562",
        "url": "https://bugzilla.suse.com/1218562"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223384",
        "url": "https://bugzilla.suse.com/1223384"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223524",
        "url": "https://bugzilla.suse.com/1223524"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223824",
        "url": "https://bugzilla.suse.com/1223824"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1225189",
        "url": "https://bugzilla.suse.com/1225189"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1225336",
        "url": "https://bugzilla.suse.com/1225336"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1225611",
        "url": "https://bugzilla.suse.com/1225611"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1225762",
        "url": "https://bugzilla.suse.com/1225762"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1226498",
        "url": "https://bugzilla.suse.com/1226498"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1226631",
        "url": "https://bugzilla.suse.com/1226631"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1226797",
        "url": "https://bugzilla.suse.com/1226797"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1227437",
        "url": "https://bugzilla.suse.com/1227437"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1227885",
        "url": "https://bugzilla.suse.com/1227885"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1228119",
        "url": "https://bugzilla.suse.com/1228119"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1228269",
        "url": "https://bugzilla.suse.com/1228269"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1228709",
        "url": "https://bugzilla.suse.com/1228709"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1228743",
        "url": "https://bugzilla.suse.com/1228743"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1228747",
        "url": "https://bugzilla.suse.com/1228747"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229005",
        "url": "https://bugzilla.suse.com/1229005"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229019",
        "url": "https://bugzilla.suse.com/1229019"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229450",
        "url": "https://bugzilla.suse.com/1229450"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229454",
        "url": "https://bugzilla.suse.com/1229454"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229456",
        "url": "https://bugzilla.suse.com/1229456"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229556",
        "url": "https://bugzilla.suse.com/1229556"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229769",
        "url": "https://bugzilla.suse.com/1229769"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229837",
        "url": "https://bugzilla.suse.com/1229837"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1229891",
        "url": "https://bugzilla.suse.com/1229891"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230055",
        "url": "https://bugzilla.suse.com/1230055"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230179",
        "url": "https://bugzilla.suse.com/1230179"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230289",
        "url": "https://bugzilla.suse.com/1230289"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230405",
        "url": "https://bugzilla.suse.com/1230405"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230414",
        "url": "https://bugzilla.suse.com/1230414"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230429",
        "url": "https://bugzilla.suse.com/1230429"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230456",
        "url": "https://bugzilla.suse.com/1230456"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230550",
        "url": "https://bugzilla.suse.com/1230550"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230600",
        "url": "https://bugzilla.suse.com/1230600"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230620",
        "url": "https://bugzilla.suse.com/1230620"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230715",
        "url": "https://bugzilla.suse.com/1230715"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230722",
        "url": "https://bugzilla.suse.com/1230722"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230763",
        "url": "https://bugzilla.suse.com/1230763"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230773",
        "url": "https://bugzilla.suse.com/1230773"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230774",
        "url": "https://bugzilla.suse.com/1230774"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230801",
        "url": "https://bugzilla.suse.com/1230801"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230903",
        "url": "https://bugzilla.suse.com/1230903"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1230918",
        "url": "https://bugzilla.suse.com/1230918"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231016",
        "url": "https://bugzilla.suse.com/1231016"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231072",
        "url": "https://bugzilla.suse.com/1231072"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231073",
        "url": "https://bugzilla.suse.com/1231073"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231084",
        "url": "https://bugzilla.suse.com/1231084"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231085",
        "url": "https://bugzilla.suse.com/1231085"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231087",
        "url": "https://bugzilla.suse.com/1231087"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231094",
        "url": "https://bugzilla.suse.com/1231094"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231096",
        "url": "https://bugzilla.suse.com/1231096"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231105",
        "url": "https://bugzilla.suse.com/1231105"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231114",
        "url": "https://bugzilla.suse.com/1231114"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231115",
        "url": "https://bugzilla.suse.com/1231115"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231148",
        "url": "https://bugzilla.suse.com/1231148"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231179",
        "url": "https://bugzilla.suse.com/1231179"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231191",
        "url": "https://bugzilla.suse.com/1231191"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231193",
        "url": "https://bugzilla.suse.com/1231193"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231195",
        "url": "https://bugzilla.suse.com/1231195"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231197",
        "url": "https://bugzilla.suse.com/1231197"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231200",
        "url": "https://bugzilla.suse.com/1231200"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231203",
        "url": "https://bugzilla.suse.com/1231203"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231277",
        "url": "https://bugzilla.suse.com/1231277"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231293",
        "url": "https://bugzilla.suse.com/1231293"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231327",
        "url": "https://bugzilla.suse.com/1231327"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231344",
        "url": "https://bugzilla.suse.com/1231344"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231375",
        "url": "https://bugzilla.suse.com/1231375"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231383",
        "url": "https://bugzilla.suse.com/1231383"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231439",
        "url": "https://bugzilla.suse.com/1231439"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231442",
        "url": "https://bugzilla.suse.com/1231442"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231496",
        "url": "https://bugzilla.suse.com/1231496"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231502",
        "url": "https://bugzilla.suse.com/1231502"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231539",
        "url": "https://bugzilla.suse.com/1231539"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231540",
        "url": "https://bugzilla.suse.com/1231540"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231578",
        "url": "https://bugzilla.suse.com/1231578"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231673",
        "url": "https://bugzilla.suse.com/1231673"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231857",
        "url": "https://bugzilla.suse.com/1231857"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231861",
        "url": "https://bugzilla.suse.com/1231861"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231872",
        "url": "https://bugzilla.suse.com/1231872"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231883",
        "url": "https://bugzilla.suse.com/1231883"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231885",
        "url": "https://bugzilla.suse.com/1231885"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231887",
        "url": "https://bugzilla.suse.com/1231887"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231888",
        "url": "https://bugzilla.suse.com/1231888"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231889",
        "url": "https://bugzilla.suse.com/1231889"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231890",
        "url": "https://bugzilla.suse.com/1231890"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231892",
        "url": "https://bugzilla.suse.com/1231892"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231893",
        "url": "https://bugzilla.suse.com/1231893"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231895",
        "url": "https://bugzilla.suse.com/1231895"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231896",
        "url": "https://bugzilla.suse.com/1231896"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231897",
        "url": "https://bugzilla.suse.com/1231897"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231902",
        "url": "https://bugzilla.suse.com/1231902"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231903",
        "url": "https://bugzilla.suse.com/1231903"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231907",
        "url": "https://bugzilla.suse.com/1231907"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231914",
        "url": "https://bugzilla.suse.com/1231914"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231929",
        "url": "https://bugzilla.suse.com/1231929"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231935",
        "url": "https://bugzilla.suse.com/1231935"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231936",
        "url": "https://bugzilla.suse.com/1231936"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231937",
        "url": "https://bugzilla.suse.com/1231937"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231938",
        "url": "https://bugzilla.suse.com/1231938"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231939",
        "url": "https://bugzilla.suse.com/1231939"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231940",
        "url": "https://bugzilla.suse.com/1231940"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231941",
        "url": "https://bugzilla.suse.com/1231941"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231942",
        "url": "https://bugzilla.suse.com/1231942"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231944",
        "url": "https://bugzilla.suse.com/1231944"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231950",
        "url": "https://bugzilla.suse.com/1231950"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231954",
        "url": "https://bugzilla.suse.com/1231954"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231958",
        "url": "https://bugzilla.suse.com/1231958"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231960",
        "url": "https://bugzilla.suse.com/1231960"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231961",
        "url": "https://bugzilla.suse.com/1231961"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231962",
        "url": "https://bugzilla.suse.com/1231962"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231965",
        "url": "https://bugzilla.suse.com/1231965"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231967",
        "url": "https://bugzilla.suse.com/1231967"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231968",
        "url": "https://bugzilla.suse.com/1231968"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231972",
        "url": "https://bugzilla.suse.com/1231972"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231973",
        "url": "https://bugzilla.suse.com/1231973"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231976",
        "url": "https://bugzilla.suse.com/1231976"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231979",
        "url": "https://bugzilla.suse.com/1231979"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231987",
        "url": "https://bugzilla.suse.com/1231987"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231988",
        "url": "https://bugzilla.suse.com/1231988"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231990",
        "url": "https://bugzilla.suse.com/1231990"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231991",
        "url": "https://bugzilla.suse.com/1231991"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231992",
        "url": "https://bugzilla.suse.com/1231992"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231995",
        "url": "https://bugzilla.suse.com/1231995"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231996",
        "url": "https://bugzilla.suse.com/1231996"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231997",
        "url": "https://bugzilla.suse.com/1231997"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1231998",
        "url": "https://bugzilla.suse.com/1231998"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232001",
        "url": "https://bugzilla.suse.com/1232001"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232004",
        "url": "https://bugzilla.suse.com/1232004"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232005",
        "url": "https://bugzilla.suse.com/1232005"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232006",
        "url": "https://bugzilla.suse.com/1232006"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232007",
        "url": "https://bugzilla.suse.com/1232007"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232025",
        "url": "https://bugzilla.suse.com/1232025"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232026",
        "url": "https://bugzilla.suse.com/1232026"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232033",
        "url": "https://bugzilla.suse.com/1232033"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232034",
        "url": "https://bugzilla.suse.com/1232034"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232035",
        "url": "https://bugzilla.suse.com/1232035"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232036",
        "url": "https://bugzilla.suse.com/1232036"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232037",
        "url": "https://bugzilla.suse.com/1232037"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232038",
        "url": "https://bugzilla.suse.com/1232038"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232039",
        "url": "https://bugzilla.suse.com/1232039"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232043",
        "url": "https://bugzilla.suse.com/1232043"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232049",
        "url": "https://bugzilla.suse.com/1232049"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232067",
        "url": "https://bugzilla.suse.com/1232067"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232069",
        "url": "https://bugzilla.suse.com/1232069"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232070",
        "url": "https://bugzilla.suse.com/1232070"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232071",
        "url": "https://bugzilla.suse.com/1232071"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232075",
        "url": "https://bugzilla.suse.com/1232075"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232083",
        "url": "https://bugzilla.suse.com/1232083"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232084",
        "url": "https://bugzilla.suse.com/1232084"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232085",
        "url": "https://bugzilla.suse.com/1232085"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232089",
        "url": "https://bugzilla.suse.com/1232089"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232097",
        "url": "https://bugzilla.suse.com/1232097"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232104",
        "url": "https://bugzilla.suse.com/1232104"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232105",
        "url": "https://bugzilla.suse.com/1232105"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232108",
        "url": "https://bugzilla.suse.com/1232108"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232114",
        "url": "https://bugzilla.suse.com/1232114"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232116",
        "url": "https://bugzilla.suse.com/1232116"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232119",
        "url": "https://bugzilla.suse.com/1232119"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232120",
        "url": "https://bugzilla.suse.com/1232120"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232123",
        "url": "https://bugzilla.suse.com/1232123"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232124",
        "url": "https://bugzilla.suse.com/1232124"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232133",
        "url": "https://bugzilla.suse.com/1232133"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232135",
        "url": "https://bugzilla.suse.com/1232135"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232136",
        "url": "https://bugzilla.suse.com/1232136"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232140",
        "url": "https://bugzilla.suse.com/1232140"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232145",
        "url": "https://bugzilla.suse.com/1232145"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232149",
        "url": "https://bugzilla.suse.com/1232149"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232150",
        "url": "https://bugzilla.suse.com/1232150"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232151",
        "url": "https://bugzilla.suse.com/1232151"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232154",
        "url": "https://bugzilla.suse.com/1232154"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232155",
        "url": "https://bugzilla.suse.com/1232155"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232160",
        "url": "https://bugzilla.suse.com/1232160"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232163",
        "url": "https://bugzilla.suse.com/1232163"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232164",
        "url": "https://bugzilla.suse.com/1232164"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232170",
        "url": "https://bugzilla.suse.com/1232170"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232172",
        "url": "https://bugzilla.suse.com/1232172"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232174",
        "url": "https://bugzilla.suse.com/1232174"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232175",
        "url": "https://bugzilla.suse.com/1232175"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232191",
        "url": "https://bugzilla.suse.com/1232191"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232196",
        "url": "https://bugzilla.suse.com/1232196"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232199",
        "url": "https://bugzilla.suse.com/1232199"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232200",
        "url": "https://bugzilla.suse.com/1232200"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232201",
        "url": "https://bugzilla.suse.com/1232201"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232217",
        "url": "https://bugzilla.suse.com/1232217"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232220",
        "url": "https://bugzilla.suse.com/1232220"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232221",
        "url": "https://bugzilla.suse.com/1232221"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232229",
        "url": "https://bugzilla.suse.com/1232229"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232233",
        "url": "https://bugzilla.suse.com/1232233"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232237",
        "url": "https://bugzilla.suse.com/1232237"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232251",
        "url": "https://bugzilla.suse.com/1232251"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232253",
        "url": "https://bugzilla.suse.com/1232253"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232259",
        "url": "https://bugzilla.suse.com/1232259"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232260",
        "url": "https://bugzilla.suse.com/1232260"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232262",
        "url": "https://bugzilla.suse.com/1232262"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232263",
        "url": "https://bugzilla.suse.com/1232263"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232282",
        "url": "https://bugzilla.suse.com/1232282"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232285",
        "url": "https://bugzilla.suse.com/1232285"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232286",
        "url": "https://bugzilla.suse.com/1232286"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232304",
        "url": "https://bugzilla.suse.com/1232304"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232305",
        "url": "https://bugzilla.suse.com/1232305"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232307",
        "url": "https://bugzilla.suse.com/1232307"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232309",
        "url": "https://bugzilla.suse.com/1232309"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232310",
        "url": "https://bugzilla.suse.com/1232310"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232313",
        "url": "https://bugzilla.suse.com/1232313"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232314",
        "url": "https://bugzilla.suse.com/1232314"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232316",
        "url": "https://bugzilla.suse.com/1232316"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232329",
        "url": "https://bugzilla.suse.com/1232329"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232332",
        "url": "https://bugzilla.suse.com/1232332"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232335",
        "url": "https://bugzilla.suse.com/1232335"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232337",
        "url": "https://bugzilla.suse.com/1232337"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232342",
        "url": "https://bugzilla.suse.com/1232342"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232345",
        "url": "https://bugzilla.suse.com/1232345"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232352",
        "url": "https://bugzilla.suse.com/1232352"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232354",
        "url": "https://bugzilla.suse.com/1232354"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232355",
        "url": "https://bugzilla.suse.com/1232355"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232358",
        "url": "https://bugzilla.suse.com/1232358"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232361",
        "url": "https://bugzilla.suse.com/1232361"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232366",
        "url": "https://bugzilla.suse.com/1232366"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232367",
        "url": "https://bugzilla.suse.com/1232367"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232368",
        "url": "https://bugzilla.suse.com/1232368"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232369",
        "url": "https://bugzilla.suse.com/1232369"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232374",
        "url": "https://bugzilla.suse.com/1232374"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232381",
        "url": "https://bugzilla.suse.com/1232381"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232383",
        "url": "https://bugzilla.suse.com/1232383"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232392",
        "url": "https://bugzilla.suse.com/1232392"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232395",
        "url": "https://bugzilla.suse.com/1232395"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232418",
        "url": "https://bugzilla.suse.com/1232418"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232424",
        "url": "https://bugzilla.suse.com/1232424"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232432",
        "url": "https://bugzilla.suse.com/1232432"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232435",
        "url": "https://bugzilla.suse.com/1232435"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232442",
        "url": "https://bugzilla.suse.com/1232442"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232446",
        "url": "https://bugzilla.suse.com/1232446"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232501",
        "url": "https://bugzilla.suse.com/1232501"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232519",
        "url": "https://bugzilla.suse.com/1232519"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232630",
        "url": "https://bugzilla.suse.com/1232630"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232631",
        "url": "https://bugzilla.suse.com/1232631"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232632",
        "url": "https://bugzilla.suse.com/1232632"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1232757",
        "url": "https://bugzilla.suse.com/1232757"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47416 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47416/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47534 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47534/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-3435 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-3435/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45934 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45934/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48664 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48664/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48879 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48879/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48946 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48946/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48947 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48947/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48948 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48948/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48949 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48949/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48951 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48951/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48953 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48953/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48954 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48954/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48955 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48955/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48956 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48956/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48957 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48957/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48958 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48958/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48959 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48959/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48960 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48960/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48961 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48961/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48962 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48962/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48966 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48966/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48967 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48967/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48968 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48968/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48969 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48969/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48970 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48970/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48971 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48971/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48972 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48972/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48973 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48973/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48975 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48975/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48977 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48977/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48978 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48978/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48980 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48980/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48981 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48981/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48985 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48985/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48987 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48987/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48988 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48988/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48991 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48991/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48992 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48992/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48994 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48994/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48995 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48995/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48997 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48997/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48999 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48999/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49000 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49000/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49002 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49002/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49003 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49003/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49005 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49005/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49006 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49006/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49007 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49007/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49010 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49010/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49011 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49011/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49012 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49012/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49014 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49014/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49015 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49015/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49016 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49016/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49017 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49017/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49019 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49019/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49020 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49020/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49021 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49021/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49022 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49022/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49023 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49023/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49024 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49024/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49025 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49025/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49026 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49026/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49027 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49027/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49028 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49028/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49029 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49029/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49031 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49031/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-49032 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-49032/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-2166 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-2166/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-28327 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-28327/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52766 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52766/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52800 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52800/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52881 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52881/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52919 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52919/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-6270 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-6270/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27043 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27043/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-36244 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-36244/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-36957 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-36957/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-39476 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-39476/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-40965 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-40965/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-42145 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-42145/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-42226 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-42226/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-42253 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-42253/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-44931 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-44931/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-44947 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-44947/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-44958 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-44958/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-45016 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-45016/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-45025 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-45025/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46678 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46678/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46716 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46716/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46719 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46719/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46754 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46754/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46770 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46770/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46775 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46775/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46777 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46777/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46809 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46809/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46811 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46811/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46813 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46813/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46814 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46814/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46815 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46815/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46816 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46816/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46817 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46817/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46818 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46818/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46826 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46826/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46828 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46828/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46834 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46834/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46840 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46840/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46841 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46841/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46848 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46848/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46849 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46849/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46854 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46854/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46855 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46855/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-46857 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-46857/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47660 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47660/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47661 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47661/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47664 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47664/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47668 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47668/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47672 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47672/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47673 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47673/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47674 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47674/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47684 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47684/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47685 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47685/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47692 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47692/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47704 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47704/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47705 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47705/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47706 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47706/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47707 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47707/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47710 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47710/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47720 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47720/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47727 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47727/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47730 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47730/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47738 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47738/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47739 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47739/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47745 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47745/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47747 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47747/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-47748 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-47748/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49858 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49858/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49860 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49860/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49866 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49866/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49867 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49867/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49881 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49881/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49882 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49882/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49883 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49883/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49886 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49886/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49890 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49890/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49892 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49892/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49894 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49894/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49895 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49895/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49896 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49896/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49897 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49897/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49899 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49899/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49901 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49901/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49906 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49906/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49908 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49908/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49909 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49909/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49911 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49911/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49912 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49912/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49913 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49913/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49914 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49914/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49917 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49917/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49918 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49918/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49919 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49919/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49920 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49920/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49922 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49922/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49923 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49923/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49929 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49929/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49930 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49930/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49933 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49933/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49936 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49936/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49939 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49939/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49946 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49946/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49949 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49949/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49954 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49954/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49955 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49955/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49958 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49958/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49959 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49959/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49960 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49960/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49962 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49962/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49967 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49967/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49969 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49969/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49973 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49973/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49974 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49974/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49975 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49975/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49982 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49982/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49991 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49991/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49993 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49993/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49995 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49995/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-49996 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-49996/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50000 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50000/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50001 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50001/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50002 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50002/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50006 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50006/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50014 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50014/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50019 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50019/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50024 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50024/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50028 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50028/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50033 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50033/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50035 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50035/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50041 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50041/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50045 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50045/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50046 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50046/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50047 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50047/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50048 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50048/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50049 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50049/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50055 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50055/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50058 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50058/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50059 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50059/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50061 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50061/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50063 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50063/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-50081 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-50081/"
      }
    ],
    "title": "Security update for the Linux Kernel",
    "tracking": {
      "current_release_date": "2024-11-13T10:13:36Z",
      "generator": {
        "date": "2024-11-13T10:13:36Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2024:3985-1",
      "initial_release_date": "2024-11-13T10:13:36Z",
      "revision_history": [
        {
          "date": "2024-11-13T10:13:36Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
                "product": {
                  "name": "kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
                  "product_id": "kernel-devel-rt-5.14.21-150500.13.76.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-rt-5.14.21-150500.13.76.1.noarch",
                "product": {
                  "name": "kernel-source-rt-5.14.21-150500.13.76.1.noarch",
                  "product_id": "kernel-source-rt-5.14.21-150500.13.76.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
                "product": {
                  "name": "kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
                  "product_id": "kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "kernel-rt-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "kernel-rt-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "kernel-rt-devel-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "kernel-rt-extra-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "kernel-rt-optional-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "kernel-rt_debug-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "kernel-syms-rt-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
                "product": {
                  "name": "reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
                  "product_id": "reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Micro 5.5",
                "product": {
                  "name": "SUSE Linux Enterprise Micro 5.5",
                  "product_id": "SUSE Linux Enterprise Micro 5.5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-micro:5.5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Live Patching 15 SP5",
                "product": {
                  "name": "SUSE Linux Enterprise Live Patching 15 SP5",
                  "product_id": "SUSE Linux Enterprise Live Patching 15 SP5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-live-patching:15:sp5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Real Time Module 15 SP5",
                "product": {
                  "name": "SUSE Real Time Module 15 SP5",
                  "product_id": "SUSE Real Time Module 15 SP5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-rt:15:sp5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap Micro 5.5",
                "product": {
                  "name": "openSUSE Leap Micro 5.5",
                  "product_id": "openSUSE Leap Micro 5.5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap-micro:5.5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.5",
                "product": {
                  "name": "openSUSE Leap 15.5",
                  "product_id": "openSUSE Leap 15.5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.5"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-5.14.21-150500.13.76.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
          "product_id": "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-rt-5.14.21-150500.13.76.1.noarch as component of SUSE Linux Enterprise Micro 5.5",
          "product_id": "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch"
        },
        "product_reference": "kernel-source-rt-5.14.21-150500.13.76.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP5",
          "product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64"
        },
        "product_reference": "kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64 as component of SUSE Real Time Module 15 SP5",
          "product_id": "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "SUSE Real Time Module 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64 as component of SUSE Real Time Module 15 SP5",
          "product_id": "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "SUSE Real Time Module 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64 as component of SUSE Real Time Module 15 SP5",
          "product_id": "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "SUSE Real Time Module 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-rt-5.14.21-150500.13.76.1.noarch as component of SUSE Real Time Module 15 SP5",
          "product_id": "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch"
        },
        "product_reference": "kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
        "relates_to_product_reference": "SUSE Real Time Module 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-5.14.21-150500.13.76.1.x86_64 as component of SUSE Real Time Module 15 SP5",
          "product_id": "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "SUSE Real Time Module 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-devel-5.14.21-150500.13.76.1.x86_64 as component of SUSE Real Time Module 15 SP5",
          "product_id": "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "SUSE Real Time Module 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64 as component of SUSE Real Time Module 15 SP5",
          "product_id": "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "SUSE Real Time Module 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt_debug-5.14.21-150500.13.76.1.x86_64 as component of SUSE Real Time Module 15 SP5",
          "product_id": "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "SUSE Real Time Module 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64 as component of SUSE Real Time Module 15 SP5",
          "product_id": "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "SUSE Real Time Module 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64 as component of SUSE Real Time Module 15 SP5",
          "product_id": "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "SUSE Real Time Module 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-rt-5.14.21-150500.13.76.1.noarch as component of SUSE Real Time Module 15 SP5",
          "product_id": "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch"
        },
        "product_reference": "kernel-source-rt-5.14.21-150500.13.76.1.noarch",
        "relates_to_product_reference": "SUSE Real Time Module 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-rt-5.14.21-150500.13.76.1.x86_64 as component of SUSE Real Time Module 15 SP5",
          "product_id": "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "SUSE Real Time Module 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64 as component of SUSE Real Time Module 15 SP5",
          "product_id": "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "SUSE Real Time Module 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap Micro 5.5",
          "product_id": "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap Micro 5.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-rt-5.14.21-150500.13.76.1.noarch as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch"
        },
        "product_reference": "kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-devel-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-extra-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-optional-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt_debug-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-rt-5.14.21-150500.13.76.1.noarch as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch"
        },
        "product_reference": "kernel-source-rt-5.14.21-150500.13.76.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-rt-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64"
        },
        "product_reference": "reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-47416",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47416"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: mdio: fix memory leak\n\nSyzbot reported memory leak in MDIO bus interface, the problem was in\nwrong state logic.\n\nMDIOBUS_ALLOCATED indicates 2 states:\n\t1. Bus is only allocated\n\t2. Bus allocated and __mdiobus_register() fails, but\n\t   device_register() was called\n\nIn case of device_register() has been called we should call put_device()\nto correctly free the memory allocated for this device, but mdiobus_free()\ncalls just kfree(dev) in case of MDIOBUS_ALLOCATED state\n\nTo avoid this behaviour we need to set bus-\u003estate to MDIOBUS_UNREGISTERED\n_before_ calling device_register(), because put_device() should be\ncalled even in case of device_register() failure.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47416",
          "url": "https://www.suse.com/security/cve/CVE-2021-47416"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225189 for CVE-2021-47416",
          "url": "https://bugzilla.suse.com/1225189"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225336 for CVE-2021-47416",
          "url": "https://bugzilla.suse.com/1225336"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2021-47416"
    },
    {
      "cve": "CVE-2021-47534",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47534"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: kms: Add missing drm_crtc_commit_put\n\nCommit 9ec03d7f1ed3 (\"drm/vc4: kms: Wait on previous FIFO users before a\ncommit\") introduced a global state for the HVS, with each FIFO storing\nthe current CRTC commit so that we can properly synchronize commits.\n\nHowever, the refcounting was off and we thus ended up leaking the\ndrm_crtc_commit structure every commit. Add a drm_crtc_commit_put to\nprevent the leakage.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47534",
          "url": "https://www.suse.com/security/cve/CVE-2021-47534"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230903 for CVE-2021-47534",
          "url": "https://bugzilla.suse.com/1230903"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47534"
    },
    {
      "cve": "CVE-2022-3435",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-3435"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A vulnerability classified as problematic has been found in Linux Kernel. This affects the function fib_nh_match of the file net/ipv4/fib_semantics.c of the component IPv4 Handler. The manipulation leads to out-of-bounds read. It is possible to initiate the attack remotely. It is recommended to apply a patch to fix this issue. The identifier VDB-210357 was assigned to this vulnerability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-3435",
          "url": "https://www.suse.com/security/cve/CVE-2022-3435"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204171 for CVE-2022-3435",
          "url": "https://bugzilla.suse.com/1204171"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-3435"
    },
    {
      "cve": "CVE-2022-45934",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45934"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45934",
          "url": "https://www.suse.com/security/cve/CVE-2022-45934"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205796 for CVE-2022-45934",
          "url": "https://bugzilla.suse.com/1205796"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212292 for CVE-2022-45934",
          "url": "https://bugzilla.suse.com/1212292"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-45934"
    },
    {
      "cve": "CVE-2022-48664",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48664"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix hang during unmount when stopping a space reclaim worker\n\nOften when running generic/562 from fstests we can hang during unmount,\nresulting in a trace like this:\n\n  Sep 07 11:52:00 debian9 unknown: run fstests generic/562 at 2022-09-07 11:52:00\n  Sep 07 11:55:32 debian9 kernel: INFO: task umount:49438 blocked for more than 120 seconds.\n  Sep 07 11:55:32 debian9 kernel:       Not tainted 6.0.0-rc2-btrfs-next-122 #1\n  Sep 07 11:55:32 debian9 kernel: \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n  Sep 07 11:55:32 debian9 kernel: task:umount          state:D stack:    0 pid:49438 ppid: 25683 flags:0x00004000\n  Sep 07 11:55:32 debian9 kernel: Call Trace:\n  Sep 07 11:55:32 debian9 kernel:  \u003cTASK\u003e\n  Sep 07 11:55:32 debian9 kernel:  __schedule+0x3c8/0xec0\n  Sep 07 11:55:32 debian9 kernel:  ? rcu_read_lock_sched_held+0x12/0x70\n  Sep 07 11:55:32 debian9 kernel:  schedule+0x5d/0xf0\n  Sep 07 11:55:32 debian9 kernel:  schedule_timeout+0xf1/0x130\n  Sep 07 11:55:32 debian9 kernel:  ? lock_release+0x224/0x4a0\n  Sep 07 11:55:32 debian9 kernel:  ? lock_acquired+0x1a0/0x420\n  Sep 07 11:55:32 debian9 kernel:  ? trace_hardirqs_on+0x2c/0xd0\n  Sep 07 11:55:32 debian9 kernel:  __wait_for_common+0xac/0x200\n  Sep 07 11:55:32 debian9 kernel:  ? usleep_range_state+0xb0/0xb0\n  Sep 07 11:55:32 debian9 kernel:  __flush_work+0x26d/0x530\n  Sep 07 11:55:32 debian9 kernel:  ? flush_workqueue_prep_pwqs+0x140/0x140\n  Sep 07 11:55:32 debian9 kernel:  ? trace_clock_local+0xc/0x30\n  Sep 07 11:55:32 debian9 kernel:  __cancel_work_timer+0x11f/0x1b0\n  Sep 07 11:55:32 debian9 kernel:  ? close_ctree+0x12b/0x5b3 [btrfs]\n  Sep 07 11:55:32 debian9 kernel:  ? __trace_bputs+0x10b/0x170\n  Sep 07 11:55:32 debian9 kernel:  close_ctree+0x152/0x5b3 [btrfs]\n  Sep 07 11:55:32 debian9 kernel:  ? evict_inodes+0x166/0x1c0\n  Sep 07 11:55:32 debian9 kernel:  generic_shutdown_super+0x71/0x120\n  Sep 07 11:55:32 debian9 kernel:  kill_anon_super+0x14/0x30\n  Sep 07 11:55:32 debian9 kernel:  btrfs_kill_super+0x12/0x20 [btrfs]\n  Sep 07 11:55:32 debian9 kernel:  deactivate_locked_super+0x2e/0xa0\n  Sep 07 11:55:32 debian9 kernel:  cleanup_mnt+0x100/0x160\n  Sep 07 11:55:32 debian9 kernel:  task_work_run+0x59/0xa0\n  Sep 07 11:55:32 debian9 kernel:  exit_to_user_mode_prepare+0x1a6/0x1b0\n  Sep 07 11:55:32 debian9 kernel:  syscall_exit_to_user_mode+0x16/0x40\n  Sep 07 11:55:32 debian9 kernel:  do_syscall_64+0x48/0x90\n  Sep 07 11:55:32 debian9 kernel:  entry_SYSCALL_64_after_hwframe+0x63/0xcd\n  Sep 07 11:55:32 debian9 kernel: RIP: 0033:0x7fcde59a57a7\n  Sep 07 11:55:32 debian9 kernel: RSP: 002b:00007ffe914217c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6\n  Sep 07 11:55:32 debian9 kernel: RAX: 0000000000000000 RBX: 00007fcde5ae8264 RCX: 00007fcde59a57a7\n  Sep 07 11:55:32 debian9 kernel: RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055b57556cdd0\n  Sep 07 11:55:32 debian9 kernel: RBP: 000055b57556cba0 R08: 0000000000000000 R09: 00007ffe91420570\n  Sep 07 11:55:32 debian9 kernel: R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\n  Sep 07 11:55:32 debian9 kernel: R13: 000055b57556cdd0 R14: 000055b57556ccb8 R15: 0000000000000000\n  Sep 07 11:55:32 debian9 kernel:  \u003c/TASK\u003e\n\nWhat happens is the following:\n\n1) The cleaner kthread tries to start a transaction to delete an unused\n   block group, but the metadata reservation can not be satisfied right\n   away, so a reservation ticket is created and it starts the async\n   metadata reclaim task (fs_info-\u003easync_reclaim_work);\n\n2) Writeback for all the filler inodes with an i_size of 2K starts\n   (generic/562 creates a lot of 2K files with the goal of filling\n   metadata space). We try to create an inline extent for them, but we\n   fail when trying to insert the inline extent with -ENOSPC (at\n   cow_file_range_inline()) - since this is not critical, we fallback\n   to non-inline mode (back to cow_file_range()), reserve extents\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48664",
          "url": "https://www.suse.com/security/cve/CVE-2022-48664"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223524 for CVE-2022-48664",
          "url": "https://bugzilla.suse.com/1223524"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48664"
    },
    {
      "cve": "CVE-2022-48879",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48879"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi: fix NULL-deref in init error path\n\nIn cases where runtime services are not supported or have been disabled,\nthe runtime services workqueue will never have been allocated.\n\nDo not try to destroy the workqueue unconditionally in the unlikely\nevent that EFI initialisation fails to avoid dereferencing a NULL\npointer.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48879",
          "url": "https://www.suse.com/security/cve/CVE-2022-48879"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1229556 for CVE-2022-48879",
          "url": "https://bugzilla.suse.com/1229556"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48879"
    },
    {
      "cve": "CVE-2022-48946",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48946"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Fix preallocation discarding at indirect extent boundary\n\nWhen preallocation extent is the first one in the extent block, the\ncode would corrupt extent tree header instead. Fix the problem and use\nudf_delete_aext() for deleting extent to avoid some code duplication.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48946",
          "url": "https://www.suse.com/security/cve/CVE-2022-48946"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231888 for CVE-2022-48946",
          "url": "https://bugzilla.suse.com/1231888"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48946"
    },
    {
      "cve": "CVE-2022-48947",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48947"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: Fix u8 overflow\n\nBy keep sending L2CAP_CONF_REQ packets, chan-\u003enum_conf_rsp increases\nmultiple times and eventually it will wrap around the maximum number\n(i.e., 255).\nThis patch prevents this by adding a boundary check with\nL2CAP_MAX_CONF_RSP\n\nBtmon log:\nBluetooth monitor ver 5.64\n= Note: Linux version 6.1.0-rc2 (x86_64)                               0.264594\n= Note: Bluetooth subsystem version 2.22                               0.264636\n@ MGMT Open: btmon (privileged) version 1.22                  {0x0001} 0.272191\n= New Index: 00:00:00:00:00:00 (Primary,Virtual,hci0)          [hci0] 13.877604\n@ RAW Open: 9496 (privileged) version 2.22                   {0x0002} 13.890741\n= Open Index: 00:00:00:00:00:00                                [hci0] 13.900426\n(...)\n\u003e ACL Data RX: Handle 200 flags 0x00 dlen 1033             #32 [hci0] 14.273106\n        invalid packet size (12 != 1033)\n        08 00 01 00 02 01 04 00 01 10 ff ff              ............\n\u003e ACL Data RX: Handle 200 flags 0x00 dlen 1547             #33 [hci0] 14.273561\n        invalid packet size (14 != 1547)\n        0a 00 01 00 04 01 06 00 40 00 00 00 00 00        ........@.....\n\u003e ACL Data RX: Handle 200 flags 0x00 dlen 2061             #34 [hci0] 14.274390\n        invalid packet size (16 != 2061)\n        0c 00 01 00 04 01 08 00 40 00 00 00 00 00 00 04  ........@.......\n\u003e ACL Data RX: Handle 200 flags 0x00 dlen 2061             #35 [hci0] 14.274932\n        invalid packet size (16 != 2061)\n        0c 00 01 00 04 01 08 00 40 00 00 00 07 00 03 00  ........@.......\n= bluetoothd: Bluetooth daemon 5.43                                   14.401828\n\u003e ACL Data RX: Handle 200 flags 0x00 dlen 1033             #36 [hci0] 14.275753\n        invalid packet size (12 != 1033)\n        08 00 01 00 04 01 04 00 40 00 00 00              ........@...",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48947",
          "url": "https://www.suse.com/security/cve/CVE-2022-48947"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231895 for CVE-2022-48947",
          "url": "https://bugzilla.suse.com/1231895"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48947"
    },
    {
      "cve": "CVE-2022-48948",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48948"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: uvc: Prevent buffer overflow in setup handler\n\nSetup function uvc_function_setup permits control transfer\nrequests with up to 64 bytes of payload (UVC_MAX_REQUEST_SIZE),\ndata stage handler for OUT transfer uses memcpy to copy req-\u003eactual\nbytes to uvc_event-\u003edata.data array of size 60. This may result\nin an overflow of 4 bytes.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48948",
          "url": "https://www.suse.com/security/cve/CVE-2022-48948"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231896 for CVE-2022-48948",
          "url": "https://bugzilla.suse.com/1231896"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48948"
    },
    {
      "cve": "CVE-2022-48949",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48949"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: Initialize mailbox message for VF reset\n\nWhen a MAC address is not assigned to the VF, that portion of the message\nsent to the VF is not set. The memory, however, is allocated from the\nstack meaning that information may be leaked to the VM. Initialize the\nmessage buffer to 0 so that no information is passed to the VM in this\ncase.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48949",
          "url": "https://www.suse.com/security/cve/CVE-2022-48949"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231897 for CVE-2022-48949",
          "url": "https://bugzilla.suse.com/1231897"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48949"
    },
    {
      "cve": "CVE-2022-48951",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48951"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: ops: Check bounds for second channel in snd_soc_put_volsw_sx()\n\nThe bounds checks in snd_soc_put_volsw_sx() are only being applied to the\nfirst channel, meaning it is possible to write out of bounds values to the\nsecond channel in stereo controls. Add appropriate checks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48951",
          "url": "https://www.suse.com/security/cve/CVE-2022-48951"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231929 for CVE-2022-48951",
          "url": "https://bugzilla.suse.com/1231929"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48951"
    },
    {
      "cve": "CVE-2022-48953",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48953"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrtc: cmos: Fix event handler registration ordering issue\n\nBecause acpi_install_fixed_event_handler() enables the event\nautomatically on success, it is incorrect to call it before the\nhandler routine passed to it is ready to handle events.\n\nUnfortunately, the rtc-cmos driver does exactly the incorrect thing\nby calling cmos_wake_setup(), which passes rtc_handler() to\nacpi_install_fixed_event_handler(), before cmos_do_probe(), because\nrtc_handler() uses dev_get_drvdata() to get to the cmos object\npointer and the driver data pointer is only populated in\ncmos_do_probe().\n\nThis leads to a NULL pointer dereference in rtc_handler() on boot\nif the RTC fixed event happens to be active at the init time.\n\nTo address this issue, change the initialization ordering of the\ndriver so that cmos_wake_setup() is always called after a successful\ncmos_do_probe() call.\n\nWhile at it, change cmos_pnp_probe() to call cmos_do_probe() after\nthe initial if () statement used for computing the IRQ argument to\nbe passed to cmos_do_probe() which is cleaner than calling it in\neach branch of that if () (local variable \"irq\" can be of type int,\nbecause it is passed to that function as an argument of type int).\n\nNote that commit 6492fed7d8c9 (\"rtc: rtc-cmos: Do not check\nACPI_FADT_LOW_POWER_S0\") caused this issue to affect a larger number\nof systems, because previously it only affected systems with\nACPI_FADT_LOW_POWER_S0 set, but it is present regardless of that\ncommit.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48953",
          "url": "https://www.suse.com/security/cve/CVE-2022-48953"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231941 for CVE-2022-48953",
          "url": "https://bugzilla.suse.com/1231941"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48953"
    },
    {
      "cve": "CVE-2022-48954",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48954"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/qeth: fix use-after-free in hsci\n\nKASAN found that addr was dereferenced after br2dev_event_work was freed.\n\n==================================================================\nBUG: KASAN: use-after-free in qeth_l2_br2dev_worker+0x5ba/0x6b0\nRead of size 1 at addr 00000000fdcea440 by task kworker/u760:4/540\nCPU: 17 PID: 540 Comm: kworker/u760:4 Tainted: G            E      6.1.0-20221128.rc7.git1.5aa3bed4ce83.300.fc36.s390x+kasan #1\nHardware name: IBM 8561 T01 703 (LPAR)\nWorkqueue: 0.0.8000_event qeth_l2_br2dev_worker\nCall Trace:\n [\u003c000000016944d4ce\u003e] dump_stack_lvl+0xc6/0xf8\n [\u003c000000016942cd9c\u003e] print_address_description.constprop.0+0x34/0x2a0\n [\u003c000000016942d118\u003e] print_report+0x110/0x1f8\n [\u003c0000000167a7bd04\u003e] kasan_report+0xfc/0x128\n [\u003c000000016938d79a\u003e] qeth_l2_br2dev_worker+0x5ba/0x6b0\n [\u003c00000001673edd1e\u003e] process_one_work+0x76e/0x1128\n [\u003c00000001673ee85c\u003e] worker_thread+0x184/0x1098\n [\u003c000000016740718a\u003e] kthread+0x26a/0x310\n [\u003c00000001672c606a\u003e] __ret_from_fork+0x8a/0xe8\n [\u003c00000001694711da\u003e] ret_from_fork+0xa/0x40\nAllocated by task 108338:\n kasan_save_stack+0x40/0x68\n kasan_set_track+0x36/0x48\n __kasan_kmalloc+0xa0/0xc0\n qeth_l2_switchdev_event+0x25a/0x738\n atomic_notifier_call_chain+0x9c/0xf8\n br_switchdev_fdb_notify+0xf4/0x110\n fdb_notify+0x122/0x180\n fdb_add_entry.constprop.0.isra.0+0x312/0x558\n br_fdb_add+0x59e/0x858\n rtnl_fdb_add+0x58a/0x928\n rtnetlink_rcv_msg+0x5f8/0x8d8\n netlink_rcv_skb+0x1f2/0x408\n netlink_unicast+0x570/0x790\n netlink_sendmsg+0x752/0xbe0\n sock_sendmsg+0xca/0x110\n ____sys_sendmsg+0x510/0x6a8\n ___sys_sendmsg+0x12a/0x180\n __sys_sendmsg+0xe6/0x168\n __do_sys_socketcall+0x3c8/0x468\n do_syscall+0x22c/0x328\n __do_syscall+0x94/0xf0\n system_call+0x82/0xb0\nFreed by task 540:\n kasan_save_stack+0x40/0x68\n kasan_set_track+0x36/0x48\n kasan_save_free_info+0x4c/0x68\n ____kasan_slab_free+0x14e/0x1a8\n __kasan_slab_free+0x24/0x30\n __kmem_cache_free+0x168/0x338\n qeth_l2_br2dev_worker+0x154/0x6b0\n process_one_work+0x76e/0x1128\n worker_thread+0x184/0x1098\n kthread+0x26a/0x310\n __ret_from_fork+0x8a/0xe8\n ret_from_fork+0xa/0x40\nLast potentially related work creation:\n kasan_save_stack+0x40/0x68\n __kasan_record_aux_stack+0xbe/0xd0\n insert_work+0x56/0x2e8\n __queue_work+0x4ce/0xd10\n queue_work_on+0xf4/0x100\n qeth_l2_switchdev_event+0x520/0x738\n atomic_notifier_call_chain+0x9c/0xf8\n br_switchdev_fdb_notify+0xf4/0x110\n fdb_notify+0x122/0x180\n fdb_add_entry.constprop.0.isra.0+0x312/0x558\n br_fdb_add+0x59e/0x858\n rtnl_fdb_add+0x58a/0x928\n rtnetlink_rcv_msg+0x5f8/0x8d8\n netlink_rcv_skb+0x1f2/0x408\n netlink_unicast+0x570/0x790\n netlink_sendmsg+0x752/0xbe0\n sock_sendmsg+0xca/0x110\n ____sys_sendmsg+0x510/0x6a8\n ___sys_sendmsg+0x12a/0x180\n __sys_sendmsg+0xe6/0x168\n __do_sys_socketcall+0x3c8/0x468\n do_syscall+0x22c/0x328\n __do_syscall+0x94/0xf0\n system_call+0x82/0xb0\nSecond to last potentially related work creation:\n kasan_save_stack+0x40/0x68\n __kasan_record_aux_stack+0xbe/0xd0\n kvfree_call_rcu+0xb2/0x760\n kernfs_unlink_open_file+0x348/0x430\n kernfs_fop_release+0xc2/0x320\n __fput+0x1ae/0x768\n task_work_run+0x1bc/0x298\n exit_to_user_mode_prepare+0x1a0/0x1a8\n __do_syscall+0x94/0xf0\n system_call+0x82/0xb0\nThe buggy address belongs to the object at 00000000fdcea400\n which belongs to the cache kmalloc-96 of size 96\nThe buggy address is located 64 bytes inside of\n 96-byte region [00000000fdcea400, 00000000fdcea460)\nThe buggy address belongs to the physical page:\npage:000000005a9c26e8 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xfdcea\nflags: 0x3ffff00000000200(slab|node=0|zone=1|lastcpupid=0x1ffff)\nraw: 3ffff00000000200 0000000000000000 0000000100000122 000000008008cc00\nraw: 0000000000000000 0020004100000000 ffffffff00000001 0000000000000000\npage dumped because: kasan: bad access detected\nMemory state around the buggy address:\n 00000000fdcea300: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc\n 00000000fdcea380: fb fb fb fb fb fb f\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48954",
          "url": "https://www.suse.com/security/cve/CVE-2022-48954"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231972 for CVE-2022-48954",
          "url": "https://bugzilla.suse.com/1231972"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48954"
    },
    {
      "cve": "CVE-2022-48955",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48955"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: thunderbolt: fix memory leak in tbnet_open()\n\nWhen tb_ring_alloc_rx() failed in tbnet_open(), ida that allocated in\ntb_xdomain_alloc_out_hopid() is not released. Add\ntb_xdomain_release_out_hopid() to the error path to release ida.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48955",
          "url": "https://www.suse.com/security/cve/CVE-2022-48955"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231892 for CVE-2022-48955",
          "url": "https://bugzilla.suse.com/1231892"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48955"
    },
    {
      "cve": "CVE-2022-48956",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48956"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: avoid use-after-free in ip6_fragment()\n\nBlamed commit claimed rcu_read_lock() was held by ip6_fragment() callers.\n\nIt seems to not be always true, at least for UDP stack.\n\nsyzbot reported:\n\nBUG: KASAN: use-after-free in ip6_dst_idev include/net/ip6_fib.h:245 [inline]\nBUG: KASAN: use-after-free in ip6_fragment+0x2724/0x2770 net/ipv6/ip6_output.c:951\nRead of size 8 at addr ffff88801d403e80 by task syz-executor.3/7618\n\nCPU: 1 PID: 7618 Comm: syz-executor.3 Not tainted 6.1.0-rc6-syzkaller-00012-g4312098baf37 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd1/0x138 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:284 [inline]\n print_report+0x15e/0x45d mm/kasan/report.c:395\n kasan_report+0xbf/0x1f0 mm/kasan/report.c:495\n ip6_dst_idev include/net/ip6_fib.h:245 [inline]\n ip6_fragment+0x2724/0x2770 net/ipv6/ip6_output.c:951\n __ip6_finish_output net/ipv6/ip6_output.c:193 [inline]\n ip6_finish_output+0x9a3/0x1170 net/ipv6/ip6_output.c:206\n NF_HOOK_COND include/linux/netfilter.h:291 [inline]\n ip6_output+0x1f1/0x540 net/ipv6/ip6_output.c:227\n dst_output include/net/dst.h:445 [inline]\n ip6_local_out+0xb3/0x1a0 net/ipv6/output_core.c:161\n ip6_send_skb+0xbb/0x340 net/ipv6/ip6_output.c:1966\n udp_v6_send_skb+0x82a/0x18a0 net/ipv6/udp.c:1286\n udp_v6_push_pending_frames+0x140/0x200 net/ipv6/udp.c:1313\n udpv6_sendmsg+0x18da/0x2c80 net/ipv6/udp.c:1606\n inet6_sendmsg+0x9d/0xe0 net/ipv6/af_inet6.c:665\n sock_sendmsg_nosec net/socket.c:714 [inline]\n sock_sendmsg+0xd3/0x120 net/socket.c:734\n sock_write_iter+0x295/0x3d0 net/socket.c:1108\n call_write_iter include/linux/fs.h:2191 [inline]\n new_sync_write fs/read_write.c:491 [inline]\n vfs_write+0x9ed/0xdd0 fs/read_write.c:584\n ksys_write+0x1ec/0x250 fs/read_write.c:637\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x39/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7fde3588c0d9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fde365b6168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fde359ac050 RCX: 00007fde3588c0d9\nRDX: 000000000000ffdc RSI: 00000000200000c0 RDI: 000000000000000a\nRBP: 00007fde358e7ae9 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007fde35acfb1f R14: 00007fde365b6300 R15: 0000000000022000\n \u003c/TASK\u003e\n\nAllocated by task 7618:\n kasan_save_stack+0x22/0x40 mm/kasan/common.c:45\n kasan_set_track+0x25/0x30 mm/kasan/common.c:52\n __kasan_slab_alloc+0x82/0x90 mm/kasan/common.c:325\n kasan_slab_alloc include/linux/kasan.h:201 [inline]\n slab_post_alloc_hook mm/slab.h:737 [inline]\n slab_alloc_node mm/slub.c:3398 [inline]\n slab_alloc mm/slub.c:3406 [inline]\n __kmem_cache_alloc_lru mm/slub.c:3413 [inline]\n kmem_cache_alloc+0x2b4/0x3d0 mm/slub.c:3422\n dst_alloc+0x14a/0x1f0 net/core/dst.c:92\n ip6_dst_alloc+0x32/0xa0 net/ipv6/route.c:344\n ip6_rt_pcpu_alloc net/ipv6/route.c:1369 [inline]\n rt6_make_pcpu_route net/ipv6/route.c:1417 [inline]\n ip6_pol_route+0x901/0x1190 net/ipv6/route.c:2254\n pol_lookup_func include/net/ip6_fib.h:582 [inline]\n fib6_rule_lookup+0x52e/0x6f0 net/ipv6/fib6_rules.c:121\n ip6_route_output_flags_noref+0x2e6/0x380 net/ipv6/route.c:2625\n ip6_route_output_flags+0x76/0x320 net/ipv6/route.c:2638\n ip6_route_output include/net/ip6_route.h:98 [inline]\n ip6_dst_lookup_tail+0x5ab/0x1620 net/ipv6/ip6_output.c:1092\n ip6_dst_lookup_flow+0x90/0x1d0 net/ipv6/ip6_output.c:1222\n ip6_sk_dst_lookup_flow+0x553/0x980 net/ipv6/ip6_output.c:1260\n udpv6_sendmsg+0x151d/0x2c80 net/ipv6/udp.c:1554\n inet6_sendmsg+0x9d/0xe0 net/ipv6/af_inet6.c:665\n sock_sendmsg_nosec n\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48956",
          "url": "https://www.suse.com/security/cve/CVE-2022-48956"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231893 for CVE-2022-48956",
          "url": "https://bugzilla.suse.com/1231893"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232799 for CVE-2022-48956",
          "url": "https://bugzilla.suse.com/1232799"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48956"
    },
    {
      "cve": "CVE-2022-48957",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48957"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndpaa2-switch: Fix memory leak in dpaa2_switch_acl_entry_add() and dpaa2_switch_acl_entry_remove()\n\nThe cmd_buff needs to be freed when error happened in\ndpaa2_switch_acl_entry_add() and dpaa2_switch_acl_entry_remove().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48957",
          "url": "https://www.suse.com/security/cve/CVE-2022-48957"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231973 for CVE-2022-48957",
          "url": "https://bugzilla.suse.com/1231973"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48957"
    },
    {
      "cve": "CVE-2022-48958",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48958"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethernet: aeroflex: fix potential skb leak in greth_init_rings()\n\nThe greth_init_rings() function won\u0027t free the newly allocated skb when\ndma_mapping_error() returns error, so add dev_kfree_skb() to fix it.\n\nCompile tested only.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48958",
          "url": "https://www.suse.com/security/cve/CVE-2022-48958"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231889 for CVE-2022-48958",
          "url": "https://bugzilla.suse.com/1231889"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48958"
    },
    {
      "cve": "CVE-2022-48959",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48959"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: sja1105: fix memory leak in sja1105_setup_devlink_regions()\n\nWhen dsa_devlink_region_create failed in sja1105_setup_devlink_regions(),\npriv-\u003eregions is not released.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48959",
          "url": "https://www.suse.com/security/cve/CVE-2022-48959"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231976 for CVE-2022-48959",
          "url": "https://bugzilla.suse.com/1231976"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48959"
    },
    {
      "cve": "CVE-2022-48960",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48960"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hisilicon: Fix potential use-after-free in hix5hd2_rx()\n\nThe skb is delivered to napi_gro_receive() which may free it, after\ncalling this, dereferencing skb may trigger use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48960",
          "url": "https://www.suse.com/security/cve/CVE-2022-48960"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231979 for CVE-2022-48960",
          "url": "https://bugzilla.suse.com/1231979"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231980 for CVE-2022-48960",
          "url": "https://bugzilla.suse.com/1231980"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2022-48960"
    },
    {
      "cve": "CVE-2022-48961",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48961"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mdio: fix unbalanced fwnode reference count in mdio_device_release()\n\nThere is warning report about of_node refcount leak\nwhile probing mdio device:\n\nOF: ERROR: memory leak, expected refcount 1 instead of 2,\nof_node_get()/of_node_put() unbalanced - destroy cset entry:\nattach overlay node /spi/soc@0/mdio@710700c0/ethernet@4\n\nIn of_mdiobus_register_device(), we increase fwnode refcount\nby fwnode_handle_get() before associating the of_node with\nmdio device, but it has never been decreased in normal path.\nSince that, in mdio_device_release(), it needs to call\nfwnode_handle_put() in addition instead of calling kfree()\ndirectly.\n\nAfter above, just calling mdio_device_free() in the error handle\npath of of_mdiobus_register_device() is enough to keep the\nrefcount balanced.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48961",
          "url": "https://www.suse.com/security/cve/CVE-2022-48961"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232108 for CVE-2022-48961",
          "url": "https://bugzilla.suse.com/1232108"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48961"
    },
    {
      "cve": "CVE-2022-48962",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48962"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hisilicon: Fix potential use-after-free in hisi_femac_rx()\n\nThe skb is delivered to napi_gro_receive() which may free it, after\ncalling this, dereferencing skb may trigger use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48962",
          "url": "https://www.suse.com/security/cve/CVE-2022-48962"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232286 for CVE-2022-48962",
          "url": "https://bugzilla.suse.com/1232286"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232801 for CVE-2022-48962",
          "url": "https://bugzilla.suse.com/1232801"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48962"
    },
    {
      "cve": "CVE-2022-48966",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48966"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mvneta: Prevent out of bounds read in mvneta_config_rss()\n\nThe pp-\u003eindir[0] value comes from the user.  It is passed to:\n\n\tif (cpu_online(pp-\u003erxq_def))\n\ninside the mvneta_percpu_elect() function.  It needs bounds checkeding\nto ensure that it is not beyond the end of the cpu bitmap.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48966",
          "url": "https://www.suse.com/security/cve/CVE-2022-48966"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232191 for CVE-2022-48966",
          "url": "https://bugzilla.suse.com/1232191"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48966"
    },
    {
      "cve": "CVE-2022-48967",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48967"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFC: nci: Bounds check struct nfc_target arrays\n\nWhile running under CONFIG_FORTIFY_SOURCE=y, syzkaller reported:\n\n  memcpy: detected field-spanning write (size 129) of single field \"target-\u003esensf_res\" at net/nfc/nci/ntf.c:260 (size 18)\n\nThis appears to be a legitimate lack of bounds checking in\nnci_add_new_protocol(). Add the missing checks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48967",
          "url": "https://www.suse.com/security/cve/CVE-2022-48967"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232304 for CVE-2022-48967",
          "url": "https://bugzilla.suse.com/1232304"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232306 for CVE-2022-48967",
          "url": "https://bugzilla.suse.com/1232306"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48967"
    },
    {
      "cve": "CVE-2022-48968",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48968"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: Fix potential memory leak in otx2_init_tc()\n\nIn otx2_init_tc(), if rhashtable_init() failed, it does not free\ntc-\u003etc_entries_bitmap which is allocated in otx2_tc_alloc_ent_bitmap().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48968",
          "url": "https://www.suse.com/security/cve/CVE-2022-48968"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232237 for CVE-2022-48968",
          "url": "https://bugzilla.suse.com/1232237"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48968"
    },
    {
      "cve": "CVE-2022-48969",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48969"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen-netfront: Fix NULL sring after live migration\n\nA NAPI is setup for each network sring to poll data to kernel\nThe sring with source host is destroyed before live migration and\nnew sring with target host is setup after live migration.\nThe NAPI for the old sring is not deleted until setup new sring\nwith target host after migration. With busy_poll/busy_read enabled,\nthe NAPI can be polled before got deleted when resume VM.\n\nBUG: unable to handle kernel NULL pointer dereference at\n0000000000000008\nIP: xennet_poll+0xae/0xd20\nPGD 0 P4D 0\nOops: 0000 [#1] SMP PTI\nCall Trace:\n finish_task_switch+0x71/0x230\n timerqueue_del+0x1d/0x40\n hrtimer_try_to_cancel+0xb5/0x110\n xennet_alloc_rx_buffers+0x2a0/0x2a0\n napi_busy_loop+0xdb/0x270\n sock_poll+0x87/0x90\n do_sys_poll+0x26f/0x580\n tracing_map_insert+0x1d4/0x2f0\n event_hist_trigger+0x14a/0x260\n\n finish_task_switch+0x71/0x230\n __schedule+0x256/0x890\n recalc_sigpending+0x1b/0x50\n xen_sched_clock+0x15/0x20\n __rb_reserve_next+0x12d/0x140\n ring_buffer_lock_reserve+0x123/0x3d0\n event_triggers_call+0x87/0xb0\n trace_event_buffer_commit+0x1c4/0x210\n xen_clocksource_get_cycles+0x15/0x20\n ktime_get_ts64+0x51/0xf0\n SyS_ppoll+0x160/0x1a0\n SyS_ppoll+0x160/0x1a0\n do_syscall_64+0x73/0x130\n entry_SYSCALL_64_after_hwframe+0x41/0xa6\n...\nRIP: xennet_poll+0xae/0xd20 RSP: ffffb4f041933900\nCR2: 0000000000000008\n---[ end trace f8601785b354351c ]---\n\nxen frontend should remove the NAPIs for the old srings before live\nmigration as the bond srings are destroyed\n\nThere is a tiny window between the srings are set to NULL and\nthe NAPIs are disabled, It is safe as the NAPI threads are still\nfrozen at that time",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48969",
          "url": "https://www.suse.com/security/cve/CVE-2022-48969"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232026 for CVE-2022-48969",
          "url": "https://bugzilla.suse.com/1232026"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48969"
    },
    {
      "cve": "CVE-2022-48970",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48970"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Get user_ns from in_skb in unix_diag_get_exact().\n\nWei Chen reported a NULL deref in sk_user_ns() [0][1], and Paolo diagnosed\nthe root cause: in unix_diag_get_exact(), the newly allocated skb does not\nhave sk. [2]\n\nWe must get the user_ns from the NETLINK_CB(in_skb).sk and pass it to\nsk_diag_fill().\n\n[0]:\nBUG: kernel NULL pointer dereference, address: 0000000000000270\n#PF: supervisor read access in kernel mode\n#PF: error_code(0x0000) - not-present page\nPGD 12bbce067 P4D 12bbce067 PUD 12bc40067 PMD 0\nOops: 0000 [#1] PREEMPT SMP\nCPU: 0 PID: 27942 Comm: syz-executor.0 Not tainted 6.1.0-rc5-next-20221118 #2\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\nrel-1.13.0-48-gd9c812dda519-prebuilt.qemu.org 04/01/2014\nRIP: 0010:sk_user_ns include/net/sock.h:920 [inline]\nRIP: 0010:sk_diag_dump_uid net/unix/diag.c:119 [inline]\nRIP: 0010:sk_diag_fill+0x77d/0x890 net/unix/diag.c:170\nCode: 89 ef e8 66 d4 2d fd c7 44 24 40 00 00 00 00 49 8d 7c 24 18 e8\n54 d7 2d fd 49 8b 5c 24 18 48 8d bb 70 02 00 00 e8 43 d7 2d fd \u003c48\u003e 8b\n9b 70 02 00 00 48 8d 7b 10 e8 33 d7 2d fd 48 8b 5b 10 48 8d\nRSP: 0018:ffffc90000d67968 EFLAGS: 00010246\nRAX: ffff88812badaa48 RBX: 0000000000000000 RCX: ffffffff840d481d\nRDX: 0000000000000465 RSI: 0000000000000000 RDI: 0000000000000270\nRBP: ffffc90000d679a8 R08: 0000000000000277 R09: 0000000000000000\nR10: 0001ffffffffffff R11: 0001c90000d679a8 R12: ffff88812ac03800\nR13: ffff88812c87c400 R14: ffff88812ae42210 R15: ffff888103026940\nFS:  00007f08b4e6f700(0000) GS:ffff88813bc00000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000270 CR3: 000000012c58b000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n unix_diag_get_exact net/unix/diag.c:285 [inline]\n unix_diag_handler_dump+0x3f9/0x500 net/unix/diag.c:317\n __sock_diag_cmd net/core/sock_diag.c:235 [inline]\n sock_diag_rcv_msg+0x237/0x250 net/core/sock_diag.c:266\n netlink_rcv_skb+0x13e/0x250 net/netlink/af_netlink.c:2564\n sock_diag_rcv+0x24/0x40 net/core/sock_diag.c:277\n netlink_unicast_kernel net/netlink/af_netlink.c:1330 [inline]\n netlink_unicast+0x5e9/0x6b0 net/netlink/af_netlink.c:1356\n netlink_sendmsg+0x739/0x860 net/netlink/af_netlink.c:1932\n sock_sendmsg_nosec net/socket.c:714 [inline]\n sock_sendmsg net/socket.c:734 [inline]\n ____sys_sendmsg+0x38f/0x500 net/socket.c:2476\n ___sys_sendmsg net/socket.c:2530 [inline]\n __sys_sendmsg+0x197/0x230 net/socket.c:2559\n __do_sys_sendmsg net/socket.c:2568 [inline]\n __se_sys_sendmsg net/socket.c:2566 [inline]\n __x64_sys_sendmsg+0x42/0x50 net/socket.c:2566\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x2b/0x70 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x4697f9\nCode: f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 48 89 f8 48\n89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d\n01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f08b4e6ec48 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 000000000077bf80 RCX: 00000000004697f9\nRDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003\nRBP: 00000000004d29e9 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 000000000077bf80\nR13: 0000000000000000 R14: 000000000077bf80 R15: 00007ffdb36bc6c0\n \u003c/TASK\u003e\nModules linked in:\nCR2: 0000000000000270\n\n[1]: https://lore.kernel.org/netdev/CAO4mrfdvyjFpokhNsiwZiP-wpdSD0AStcJwfKcKQdAALQ9_2Qw@mail.gmail.com/\n[2]: https://lore.kernel.org/netdev/e04315e7c90d9a75613f3993c2baf2d344eef7eb.camel@redhat.com/",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48970",
          "url": "https://www.suse.com/security/cve/CVE-2022-48970"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231887 for CVE-2022-48970",
          "url": "https://bugzilla.suse.com/1231887"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48970"
    },
    {
      "cve": "CVE-2022-48971",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48971"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: Fix not cleanup led when bt_init fails\n\nbt_init() calls bt_leds_init() to register led, but if it fails later,\nbt_leds_cleanup() is not called to unregister it.\n\nThis can cause panic if the argument \"bluetooth-power\" in text is freed\nand then another led_trigger_register() tries to access it:\n\nBUG: unable to handle page fault for address: ffffffffc06d3bc0\nRIP: 0010:strcmp+0xc/0x30\n  Call Trace:\n    \u003cTASK\u003e\n    led_trigger_register+0x10d/0x4f0\n    led_trigger_register_simple+0x7d/0x100\n    bt_init+0x39/0xf7 [bluetooth]\n    do_one_initcall+0xd0/0x4e0",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48971",
          "url": "https://www.suse.com/security/cve/CVE-2022-48971"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232037 for CVE-2022-48971",
          "url": "https://bugzilla.suse.com/1232037"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48971"
    },
    {
      "cve": "CVE-2022-48972",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48972"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmac802154: fix missing INIT_LIST_HEAD in ieee802154_if_add()\n\nKernel fault injection test reports null-ptr-deref as follows:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000008\nRIP: 0010:cfg802154_netdev_notifier_call+0x120/0x310 include/linux/list.h:114\nCall Trace:\n \u003cTASK\u003e\n raw_notifier_call_chain+0x6d/0xa0 kernel/notifier.c:87\n call_netdevice_notifiers_info+0x6e/0xc0 net/core/dev.c:1944\n unregister_netdevice_many_notify+0x60d/0xcb0 net/core/dev.c:1982\n unregister_netdevice_queue+0x154/0x1a0 net/core/dev.c:10879\n register_netdevice+0x9a8/0xb90 net/core/dev.c:10083\n ieee802154_if_add+0x6ed/0x7e0 net/mac802154/iface.c:659\n ieee802154_register_hw+0x29c/0x330 net/mac802154/main.c:229\n mcr20a_probe+0xaaa/0xcb1 drivers/net/ieee802154/mcr20a.c:1316\n\nieee802154_if_add() allocates wpan_dev as netdev\u0027s private data, but not\ninit the list in struct wpan_dev. cfg802154_netdev_notifier_call() manage\nthe list when device register/unregister, and may lead to null-ptr-deref.\n\nUse INIT_LIST_HEAD() on it to initialize it correctly.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48972",
          "url": "https://www.suse.com/security/cve/CVE-2022-48972"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232025 for CVE-2022-48972",
          "url": "https://bugzilla.suse.com/1232025"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48972"
    },
    {
      "cve": "CVE-2022-48973",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48973"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: amd8111: Fix PCI device reference count leak\n\nfor_each_pci_dev() is implemented by pci_get_device(). The comment of\npci_get_device() says that it will increase the reference count for the\nreturned pci_dev and also decrease the reference count for the input\npci_dev @from if it is not NULL.\n\nIf we break for_each_pci_dev() loop with pdev not NULL, we need to call\npci_dev_put() to decrease the reference count. Add the missing\npci_dev_put() after the \u0027out\u0027 label. Since pci_dev_put() can handle NULL\ninput parameter, there is no problem for the \u0027Device not found\u0027 branch.\nFor the normal path, add pci_dev_put() in amd_gpio_exit().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48973",
          "url": "https://www.suse.com/security/cve/CVE-2022-48973"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232039 for CVE-2022-48973",
          "url": "https://bugzilla.suse.com/1232039"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48973"
    },
    {
      "cve": "CVE-2022-48975",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48975"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: fix memory leak in gpiochip_setup_dev()\n\nHere is a backtrace report about memory leak detected in\ngpiochip_setup_dev():\n\nunreferenced object 0xffff88810b406400 (size 512):\n  comm \"python3\", pid 1682, jiffies 4295346908 (age 24.090s)\n  backtrace:\n    kmalloc_trace\n    device_add\t\tdevice_private_init at drivers/base/core.c:3361\n\t\t\t(inlined by) device_add at drivers/base/core.c:3411\n    cdev_device_add\n    gpiolib_cdev_register\n    gpiochip_setup_dev\n    gpiochip_add_data_with_key\n\ngcdev_register() \u0026 gcdev_unregister() would call device_add() \u0026\ndevice_del() (no matter CONFIG_GPIO_CDEV is enabled or not) to\nregister/unregister device.\n\nHowever, if device_add() succeeds, some resource (like\nstruct device_private allocated by device_private_init())\nis not released by device_del().\n\nTherefore, after device_add() succeeds by gcdev_register(), it\nneeds to call put_device() to release resource in the error handle\npath.\n\nHere we move forward the register of release function, and let it\nrelease every piece of resource by put_device() instead of kfree().\n\nWhile at it, fix another subtle issue, i.e. when gc-\u003engpio is equal\nto 0, we still call kcalloc() and, in case of further error, kfree()\non the ZERO_PTR pointer, which is not NULL. It\u0027s not a bug per se,\nbut rather waste of the resources and potentially wrong expectation\nabout contents of the gdev-\u003edescs variable.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48975",
          "url": "https://www.suse.com/security/cve/CVE-2022-48975"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231885 for CVE-2022-48975",
          "url": "https://bugzilla.suse.com/1231885"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48975"
    },
    {
      "cve": "CVE-2022-48977",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48977"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: af_can: fix NULL pointer dereference in can_rcv_filter\n\nAnalogue to commit 8aa59e355949 (\"can: af_can: fix NULL pointer\ndereference in can_rx_register()\") we need to check for a missing\ninitialization of ml_priv in the receive path of CAN frames.\n\nSince commit 4e096a18867a (\"net: introduce CAN specific pointer in the\nstruct net_device\") the check for dev-\u003etype to be ARPHRD_CAN is not\nsufficient anymore since bonding or tun netdevices claim to be CAN\ndevices but do not initialize ml_priv accordingly.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48977",
          "url": "https://www.suse.com/security/cve/CVE-2022-48977"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231883 for CVE-2022-48977",
          "url": "https://bugzilla.suse.com/1231883"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48977"
    },
    {
      "cve": "CVE-2022-48978",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48978"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: core: fix shift-out-of-bounds in hid_report_raw_event\n\nSyzbot reported shift-out-of-bounds in hid_report_raw_event.\n\nmicrosoft 0003:045E:07DA.0001: hid_field_extract() called with n (128) \u003e\n32! (swapper/0)\n======================================================================\nUBSAN: shift-out-of-bounds in drivers/hid/hid-core.c:1323:20\nshift exponent 127 is too large for 32-bit type \u0027int\u0027\nCPU: 0 PID: 0 Comm: swapper/0 Not tainted\n6.1.0-rc4-syzkaller-00159-g4bbf3422df78 #0\nHardware name: Google Compute Engine/Google Compute Engine, BIOS\nGoogle 10/26/2022\nCall Trace:\n \u003cIRQ\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x1e3/0x2cb lib/dump_stack.c:106\n ubsan_epilogue lib/ubsan.c:151 [inline]\n __ubsan_handle_shift_out_of_bounds+0x3a6/0x420 lib/ubsan.c:322\n snto32 drivers/hid/hid-core.c:1323 [inline]\n hid_input_fetch_field drivers/hid/hid-core.c:1572 [inline]\n hid_process_report drivers/hid/hid-core.c:1665 [inline]\n hid_report_raw_event+0xd56/0x18b0 drivers/hid/hid-core.c:1998\n hid_input_report+0x408/0x4f0 drivers/hid/hid-core.c:2066\n hid_irq_in+0x459/0x690 drivers/hid/usbhid/hid-core.c:284\n __usb_hcd_giveback_urb+0x369/0x530 drivers/usb/core/hcd.c:1671\n dummy_timer+0x86b/0x3110 drivers/usb/gadget/udc/dummy_hcd.c:1988\n call_timer_fn+0xf5/0x210 kernel/time/timer.c:1474\n expire_timers kernel/time/timer.c:1519 [inline]\n __run_timers+0x76a/0x980 kernel/time/timer.c:1790\n run_timer_softirq+0x63/0xf0 kernel/time/timer.c:1803\n __do_softirq+0x277/0x75b kernel/softirq.c:571\n __irq_exit_rcu+0xec/0x170 kernel/softirq.c:650\n irq_exit_rcu+0x5/0x20 kernel/softirq.c:662\n sysvec_apic_timer_interrupt+0x91/0xb0 arch/x86/kernel/apic/apic.c:1107\n======================================================================\n\nIf the size of the integer (unsigned n) is bigger than 32 in snto32(),\nshift exponent will be too large for 32-bit type \u0027int\u0027, resulting in a\nshift-out-of-bounds bug.\nFix this by adding a check on the size of the integer (unsigned n) in\nsnto32(). To add support for n greater than 32 bits, set n to 32, if n\nis greater than 32.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48978",
          "url": "https://www.suse.com/security/cve/CVE-2022-48978"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232038 for CVE-2022-48978",
          "url": "https://bugzilla.suse.com/1232038"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48978"
    },
    {
      "cve": "CVE-2022-48980",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48980"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: sja1105: avoid out of bounds access in sja1105_init_l2_policing()\n\nThe SJA1105 family has 45 L2 policing table entries\n(SJA1105_MAX_L2_POLICING_COUNT) and SJA1110 has 110\n(SJA1110_MAX_L2_POLICING_COUNT). Keeping the table structure but\naccounting for the difference in port count (5 in SJA1105 vs 10 in\nSJA1110) does not fully explain the difference. Rather, the SJA1110 also\nhas L2 ingress policers for multicast traffic. If a packet is classified\nas multicast, it will be processed by the policer index 99 + SRCPORT.\n\nThe sja1105_init_l2_policing() function initializes all L2 policers such\nthat they don\u0027t interfere with normal packet reception by default. To have\na common code between SJA1105 and SJA1110, the index of the multicast\npolicer for the port is calculated because it\u0027s an index that is out of\nbounds for SJA1105 but in bounds for SJA1110, and a bounds check is\nperformed.\n\nThe code fails to do the proper thing when determining what to do with the\nmulticast policer of port 0 on SJA1105 (ds-\u003enum_ports = 5). The \"mcast\"\nindex will be equal to 45, which is also equal to\ntable-\u003eops-\u003emax_entry_count (SJA1105_MAX_L2_POLICING_COUNT). So it passes\nthrough the check. But at the same time, SJA1105 doesn\u0027t have multicast\npolicers. So the code programs the SHARINDX field of an out-of-bounds\nelement in the L2 Policing table of the static config.\n\nThe comparison between index 45 and 45 entries should have determined the\ncode to not access this policer index on SJA1105, since its memory wasn\u0027t\neven allocated.\n\nWith enough bad luck, the out-of-bounds write could even overwrite other\nvalid kernel data, but in this case, the issue was detected using KASAN.\n\nKernel log:\n\nsja1105 spi5.0: Probed switch chip: SJA1105Q\n==================================================================\nBUG: KASAN: slab-out-of-bounds in sja1105_setup+0x1cbc/0x2340\nWrite of size 8 at addr ffffff880bd57708 by task kworker/u8:0/8\n...\nWorkqueue: events_unbound deferred_probe_work_func\nCall trace:\n...\nsja1105_setup+0x1cbc/0x2340\ndsa_register_switch+0x1284/0x18d0\nsja1105_probe+0x748/0x840\n...\nAllocated by task 8:\n...\nsja1105_setup+0x1bcc/0x2340\ndsa_register_switch+0x1284/0x18d0\nsja1105_probe+0x748/0x840\n...",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48980",
          "url": "https://www.suse.com/security/cve/CVE-2022-48980"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232233 for CVE-2022-48980",
          "url": "https://bugzilla.suse.com/1232233"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48980"
    },
    {
      "cve": "CVE-2022-48981",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48981"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/shmem-helper: Remove errant put in error path\n\ndrm_gem_shmem_mmap() doesn\u0027t own this reference, resulting in the GEM\nobject getting prematurely freed leading to a later use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48981",
          "url": "https://www.suse.com/security/cve/CVE-2022-48981"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232229 for CVE-2022-48981",
          "url": "https://bugzilla.suse.com/1232229"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48981"
    },
    {
      "cve": "CVE-2022-48985",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48985"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mana: Fix race on per-CQ variable napi work_done\n\nAfter calling napi_complete_done(), the NAPIF_STATE_SCHED bit may be\ncleared, and another CPU can start napi thread and access per-CQ variable,\ncq-\u003ework_done. If the other thread (for example, from busy_poll) sets\nit to a value \u003e= budget, this thread will continue to run when it should\nstop, and cause memory corruption and panic.\n\nTo fix this issue, save the per-CQ work_done variable in a local variable\nbefore napi_complete_done(), so it won\u0027t be corrupted by a possible\nconcurrent thread after napi_complete_done().\n\nAlso, add a flag bit to advertise to the NIC firmware: the NAPI work_done\nvariable race is fixed, so the driver is able to reliably support features\nlike busy_poll.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48985",
          "url": "https://www.suse.com/security/cve/CVE-2022-48985"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231958 for CVE-2022-48985",
          "url": "https://bugzilla.suse.com/1231958"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48985"
    },
    {
      "cve": "CVE-2022-48987",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48987"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: v4l2-dv-timings.c: fix too strict blanking sanity checks\n\nSanity checks were added to verify the v4l2_bt_timings blanking fields\nin order to avoid integer overflows when userspace passes weird values.\n\nBut that assumed that userspace would correctly fill in the front porch,\nbackporch and sync values, but sometimes all you know is the total\nblanking, which is then assigned to just one of these fields.\n\nAnd that can fail with these checks.\n\nSo instead set a maximum for the total horizontal and vertical\nblanking and check that each field remains below that.\n\nThat is still sufficient to avoid integer overflows, but it also\nallows for more flexibility in how userspace fills in these fields.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48987",
          "url": "https://www.suse.com/security/cve/CVE-2022-48987"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232067 for CVE-2022-48987",
          "url": "https://bugzilla.suse.com/1232067"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48987"
    },
    {
      "cve": "CVE-2022-48988",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48988"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmemcg: fix possible use-after-free in memcg_write_event_control()\n\nmemcg_write_event_control() accesses the dentry-\u003ed_name of the specified\ncontrol fd to route the write call.  As a cgroup interface file can\u0027t be\nrenamed, it\u0027s safe to access d_name as long as the specified file is a\nregular cgroup file.  Also, as these cgroup interface files can\u0027t be\nremoved before the directory, it\u0027s safe to access the parent too.\n\nPrior to 347c4a874710 (\"memcg: remove cgroup_event-\u003ecft\"), there was a\ncall to __file_cft() which verified that the specified file is a regular\ncgroupfs file before further accesses.  The cftype pointer returned from\n__file_cft() was no longer necessary and the commit inadvertently dropped\nthe file type check with it allowing any file to slip through.  With the\ninvarients broken, the d_name and parent accesses can now race against\nrenames and removals of arbitrary files and cause use-after-free\u0027s.\n\nFix the bug by resurrecting the file type check in __file_cft().  Now that\ncgroupfs is implemented through kernfs, checking the file operations needs\nto go through a layer of indirection.  Instead, let\u0027s check the superblock\nand dentry type.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48988",
          "url": "https://www.suse.com/security/cve/CVE-2022-48988"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232069 for CVE-2022-48988",
          "url": "https://bugzilla.suse.com/1232069"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232106 for CVE-2022-48988",
          "url": "https://bugzilla.suse.com/1232106"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48988"
    },
    {
      "cve": "CVE-2022-48991",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48991"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/khugepaged: invoke MMU notifiers in shmem/file collapse paths\n\nAny codepath that zaps page table entries must invoke MMU notifiers to\nensure that secondary MMUs (like KVM) don\u0027t keep accessing pages which\naren\u0027t mapped anymore.  Secondary MMUs don\u0027t hold their own references to\npages that are mirrored over, so failing to notify them can lead to page\nuse-after-free.\n\nI\u0027m marking this as addressing an issue introduced in commit f3f0e1d2150b\n(\"khugepaged: add support of collapse for tmpfs/shmem pages\"), but most of\nthe security impact of this only came in commit 27e1f8273113 (\"khugepaged:\nenable collapse pmd for pte-mapped THP\"), which actually omitted flushes\nfor the removal of present PTEs, not just for the removal of empty page\ntables.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48991",
          "url": "https://www.suse.com/security/cve/CVE-2022-48991"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232070 for CVE-2022-48991",
          "url": "https://bugzilla.suse.com/1232070"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232372 for CVE-2022-48991",
          "url": "https://bugzilla.suse.com/1232372"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48991"
    },
    {
      "cve": "CVE-2022-48992",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48992"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: soc-pcm: Add NULL check in BE reparenting\n\nAdd NULL check in dpcm_be_reparent API, to handle\nkernel NULL pointer dereference error.\nThe issue occurred in fuzzing test.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48992",
          "url": "https://www.suse.com/security/cve/CVE-2022-48992"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232071 for CVE-2022-48992",
          "url": "https://bugzilla.suse.com/1232071"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48992"
    },
    {
      "cve": "CVE-2022-48994",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48994"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: seq: Fix function prototype mismatch in snd_seq_expand_var_event\n\nWith clang\u0027s kernel control flow integrity (kCFI, CONFIG_CFI_CLANG),\nindirect call targets are validated against the expected function\npointer prototype to make sure the call target is valid to help mitigate\nROP attacks. If they are not identical, there is a failure at run time,\nwhich manifests as either a kernel panic or thread getting killed.\n\nseq_copy_in_user() and seq_copy_in_kernel() did not have prototypes\nmatching snd_seq_dump_func_t. Adjust this and remove the casts. There\nare not resulting binary output differences.\n\nThis was found as a result of Clang\u0027s new -Wcast-function-type-strict\nflag, which is more sensitive than the simpler -Wcast-function-type,\nwhich only checks for type width mismatches.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48994",
          "url": "https://www.suse.com/security/cve/CVE-2022-48994"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232119 for CVE-2022-48994",
          "url": "https://bugzilla.suse.com/1232119"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 0,
            "baseSeverity": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48994"
    },
    {
      "cve": "CVE-2022-48995",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48995"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: raydium_ts_i2c - fix memory leak in raydium_i2c_send()\n\nThere is a kmemleak when test the raydium_i2c_ts with bpf mock device:\n\n  unreferenced object 0xffff88812d3675a0 (size 8):\n    comm \"python3\", pid 349, jiffies 4294741067 (age 95.695s)\n    hex dump (first 8 bytes):\n      11 0e 10 c0 01 00 04 00                          ........\n    backtrace:\n      [\u003c0000000068427125\u003e] __kmalloc+0x46/0x1b0\n      [\u003c0000000090180f91\u003e] raydium_i2c_send+0xd4/0x2bf [raydium_i2c_ts]\n      [\u003c000000006e631aee\u003e] raydium_i2c_initialize.cold+0xbc/0x3e4 [raydium_i2c_ts]\n      [\u003c00000000dc6fcf38\u003e] raydium_i2c_probe+0x3cd/0x6bc [raydium_i2c_ts]\n      [\u003c00000000a310de16\u003e] i2c_device_probe+0x651/0x680\n      [\u003c00000000f5a96bf3\u003e] really_probe+0x17c/0x3f0\n      [\u003c00000000096ba499\u003e] __driver_probe_device+0xe3/0x170\n      [\u003c00000000c5acb4d9\u003e] driver_probe_device+0x49/0x120\n      [\u003c00000000264fe082\u003e] __device_attach_driver+0xf7/0x150\n      [\u003c00000000f919423c\u003e] bus_for_each_drv+0x114/0x180\n      [\u003c00000000e067feca\u003e] __device_attach+0x1e5/0x2d0\n      [\u003c0000000054301fc2\u003e] bus_probe_device+0x126/0x140\n      [\u003c00000000aad93b22\u003e] device_add+0x810/0x1130\n      [\u003c00000000c086a53f\u003e] i2c_new_client_device+0x352/0x4e0\n      [\u003c000000003c2c248c\u003e] of_i2c_register_device+0xf1/0x110\n      [\u003c00000000ffec4177\u003e] of_i2c_notify+0x100/0x160\n  unreferenced object 0xffff88812d3675c8 (size 8):\n    comm \"python3\", pid 349, jiffies 4294741070 (age 95.692s)\n    hex dump (first 8 bytes):\n      22 00 36 2d 81 88 ff ff                          \".6-....\n    backtrace:\n      [\u003c0000000068427125\u003e] __kmalloc+0x46/0x1b0\n      [\u003c0000000090180f91\u003e] raydium_i2c_send+0xd4/0x2bf [raydium_i2c_ts]\n      [\u003c000000001d5c9620\u003e] raydium_i2c_initialize.cold+0x223/0x3e4 [raydium_i2c_ts]\n      [\u003c00000000dc6fcf38\u003e] raydium_i2c_probe+0x3cd/0x6bc [raydium_i2c_ts]\n      [\u003c00000000a310de16\u003e] i2c_device_probe+0x651/0x680\n      [\u003c00000000f5a96bf3\u003e] really_probe+0x17c/0x3f0\n      [\u003c00000000096ba499\u003e] __driver_probe_device+0xe3/0x170\n      [\u003c00000000c5acb4d9\u003e] driver_probe_device+0x49/0x120\n      [\u003c00000000264fe082\u003e] __device_attach_driver+0xf7/0x150\n      [\u003c00000000f919423c\u003e] bus_for_each_drv+0x114/0x180\n      [\u003c00000000e067feca\u003e] __device_attach+0x1e5/0x2d0\n      [\u003c0000000054301fc2\u003e] bus_probe_device+0x126/0x140\n      [\u003c00000000aad93b22\u003e] device_add+0x810/0x1130\n      [\u003c00000000c086a53f\u003e] i2c_new_client_device+0x352/0x4e0\n      [\u003c000000003c2c248c\u003e] of_i2c_register_device+0xf1/0x110\n      [\u003c00000000ffec4177\u003e] of_i2c_notify+0x100/0x160\n\nAfter BANK_SWITCH command from i2c BUS, no matter success or error\nhappened, the tx_buf should be freed.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48995",
          "url": "https://www.suse.com/security/cve/CVE-2022-48995"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232120 for CVE-2022-48995",
          "url": "https://bugzilla.suse.com/1232120"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48995"
    },
    {
      "cve": "CVE-2022-48997",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48997"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: tpm: Protect tpm_pm_suspend with locks\n\nCurrently tpm transactions are executed unconditionally in\ntpm_pm_suspend() function, which may lead to races with other tpm\naccessors in the system.\n\nSpecifically, the hw_random tpm driver makes use of tpm_get_random(),\nand this function is called in a loop from a kthread, which means it\u0027s\nnot frozen alongside userspace, and so can race with the work done\nduring system suspend:\n\n  tpm tpm0: tpm_transmit: tpm_recv: error -52\n  tpm tpm0: invalid TPM_STS.x 0xff, dumping stack for forensics\n  CPU: 0 PID: 1 Comm: init Not tainted 6.1.0-rc5+ #135\n  Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.0-20220807_005459-localhost 04/01/2014\n  Call Trace:\n   tpm_tis_status.cold+0x19/0x20\n   tpm_transmit+0x13b/0x390\n   tpm_transmit_cmd+0x20/0x80\n   tpm1_pm_suspend+0xa6/0x110\n   tpm_pm_suspend+0x53/0x80\n   __pnp_bus_suspend+0x35/0xe0\n   __device_suspend+0x10f/0x350\n\nFix this by calling tpm_try_get_ops(), which itself is a wrapper around\ntpm_chip_start(), but takes the appropriate mutex.\n\n[Jason: reworked commit message, added metadata]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48997",
          "url": "https://www.suse.com/security/cve/CVE-2022-48997"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232035 for CVE-2022-48997",
          "url": "https://bugzilla.suse.com/1232035"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.2,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48997"
    },
    {
      "cve": "CVE-2022-48999",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48999"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: Handle attempt to delete multipath route when fib_info contains an nh reference\n\nGwangun Jung reported a slab-out-of-bounds access in fib_nh_match:\n    fib_nh_match+0xf98/0x1130 linux-6.0-rc7/net/ipv4/fib_semantics.c:961\n    fib_table_delete+0x5f3/0xa40 linux-6.0-rc7/net/ipv4/fib_trie.c:1753\n    inet_rtm_delroute+0x2b3/0x380 linux-6.0-rc7/net/ipv4/fib_frontend.c:874\n\nSeparate nexthop objects are mutually exclusive with the legacy\nmultipath spec. Fix fib_nh_match to return if the config for the\nto be deleted route contains a multipath spec while the fib_info\nis using a nexthop object.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48999",
          "url": "https://www.suse.com/security/cve/CVE-2022-48999"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231936 for CVE-2022-48999",
          "url": "https://bugzilla.suse.com/1231936"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48999"
    },
    {
      "cve": "CVE-2022-49000",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49000"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Fix PCI device refcount leak in has_external_pci()\n\nfor_each_pci_dev() is implemented by pci_get_device(). The comment of\npci_get_device() says that it will increase the reference count for the\nreturned pci_dev and also decrease the reference count for the input\npci_dev @from if it is not NULL.\n\nIf we break for_each_pci_dev() loop with pdev not NULL, we need to call\npci_dev_put() to decrease the reference count. Add the missing\npci_dev_put() before \u0027return true\u0027 to avoid reference count leak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49000",
          "url": "https://www.suse.com/security/cve/CVE-2022-49000"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232123 for CVE-2022-49000",
          "url": "https://bugzilla.suse.com/1232123"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49000"
    },
    {
      "cve": "CVE-2022-49002",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49002"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Fix PCI device refcount leak in dmar_dev_scope_init()\n\nfor_each_pci_dev() is implemented by pci_get_device(). The comment of\npci_get_device() says that it will increase the reference count for the\nreturned pci_dev and also decrease the reference count for the input\npci_dev @from if it is not NULL.\n\nIf we break for_each_pci_dev() loop with pdev not NULL, we need to call\npci_dev_put() to decrease the reference count. Add the missing\npci_dev_put() for the error path to avoid reference count leak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49002",
          "url": "https://www.suse.com/security/cve/CVE-2022-49002"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232133 for CVE-2022-49002",
          "url": "https://bugzilla.suse.com/1232133"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-49002"
    },
    {
      "cve": "CVE-2022-49003",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49003"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: fix SRCU protection of nvme_ns_head list\n\nWalking the nvme_ns_head siblings list is protected by the head\u0027s srcu\nin nvme_ns_head_submit_bio() but not nvme_mpath_revalidate_paths().\nRemoving namespaces from the list also fails to synchronize the srcu.\nConcurrent scan work can therefore cause use-after-frees.\n\nHold the head\u0027s srcu lock in nvme_mpath_revalidate_paths() and\nsynchronize with the srcu, not the global RCU, in nvme_ns_remove().\n\nObserved the following panic when making NVMe/RDMA connections\nwith native multipath on the Rocky Linux 8.6 kernel\n(it seems the upstream kernel has the same race condition).\nDisassembly shows the faulting instruction is cmp 0x50(%rdx),%rcx;\ncomputing capacity != get_capacity(ns-\u003edisk).\nAddress 0x50 is dereferenced because ns-\u003edisk is NULL.\nThe NULL disk appears to be the result of concurrent scan work\nfreeing the namespace (note the log line in the middle of the panic).\n\n[37314.206036] BUG: unable to handle kernel NULL pointer dereference at 0000000000000050\n[37314.206036] nvme0n3: detected capacity change from 0 to 11811160064\n[37314.299753] PGD 0 P4D 0\n[37314.299756] Oops: 0000 [#1] SMP PTI\n[37314.299759] CPU: 29 PID: 322046 Comm: kworker/u98:3 Kdump: loaded Tainted: G        W      X --------- -  - 4.18.0-372.32.1.el8test86.x86_64 #1\n[37314.299762] Hardware name: Dell Inc. PowerEdge R720/0JP31P, BIOS 2.7.0 05/23/2018\n[37314.299763] Workqueue: nvme-wq nvme_scan_work [nvme_core]\n[37314.299783] RIP: 0010:nvme_mpath_revalidate_paths+0x26/0xb0 [nvme_core]\n[37314.299790] Code: 1f 44 00 00 66 66 66 66 90 55 53 48 8b 5f 50 48 8b 83 c8 c9 00 00 48 8b 13 48 8b 48 50 48 39 d3 74 20 48 8d 42 d0 48 8b 50 20 \u003c48\u003e 3b 4a 50 74 05 f0 80 60 70 ef 48 8b 50 30 48 8d 42 d0 48 39 d3\n[37315.058803] RSP: 0018:ffffabe28f913d10 EFLAGS: 00010202\n[37315.121316] RAX: ffff927a077da800 RBX: ffff92991dd70000 RCX: 0000000001600000\n[37315.206704] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff92991b719800\n[37315.292106] RBP: ffff929a6b70c000 R08: 000000010234cd4a R09: c0000000ffff7fff\n[37315.377501] R10: 0000000000000001 R11: ffffabe28f913a30 R12: 0000000000000000\n[37315.462889] R13: ffff92992716600c R14: ffff929964e6e030 R15: ffff92991dd70000\n[37315.548286] FS:  0000000000000000(0000) GS:ffff92b87fb80000(0000) knlGS:0000000000000000\n[37315.645111] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[37315.713871] CR2: 0000000000000050 CR3: 0000002208810006 CR4: 00000000000606e0\n[37315.799267] Call Trace:\n[37315.828515]  nvme_update_ns_info+0x1ac/0x250 [nvme_core]\n[37315.892075]  nvme_validate_or_alloc_ns+0x2ff/0xa00 [nvme_core]\n[37315.961871]  ? __blk_mq_free_request+0x6b/0x90\n[37316.015021]  nvme_scan_work+0x151/0x240 [nvme_core]\n[37316.073371]  process_one_work+0x1a7/0x360\n[37316.121318]  ? create_worker+0x1a0/0x1a0\n[37316.168227]  worker_thread+0x30/0x390\n[37316.212024]  ? create_worker+0x1a0/0x1a0\n[37316.258939]  kthread+0x10a/0x120\n[37316.297557]  ? set_kthread_struct+0x50/0x50\n[37316.347590]  ret_from_fork+0x35/0x40\n[37316.390360] Modules linked in: nvme_rdma nvme_tcp(X) nvme_fabrics nvme_core netconsole iscsi_tcp libiscsi_tcp dm_queue_length dm_service_time nf_conntrack_netlink br_netfilter bridge stp llc overlay nft_chain_nat ipt_MASQUERADE nf_nat xt_addrtype xt_CT nft_counter xt_state xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 xt_comment xt_multiport nft_compat nf_tables libcrc32c nfnetlink dm_multipath tg3 rpcrdma sunrpc rdma_ucm ib_srpt ib_isert iscsi_target_mod target_core_mod ib_iser libiscsi scsi_transport_iscsi ib_umad rdma_cm ib_ipoib iw_cm ib_cm intel_rapl_msr iTCO_wdt iTCO_vendor_support dcdbas intel_rapl_common sb_edac x86_pkg_temp_thermal intel_powerclamp coretemp kvm_intel ipmi_ssif kvm irqbypass crct10dif_pclmul crc32_pclmul mlx5_ib ghash_clmulni_intel ib_uverbs rapl intel_cstate intel_uncore ib_core ipmi_si joydev mei_me pcspkr ipmi_devintf mei lpc_ich wmi ipmi_msghandler acpi_power_meter ex\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49003",
          "url": "https://www.suse.com/security/cve/CVE-2022-49003"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232136 for CVE-2022-49003",
          "url": "https://bugzilla.suse.com/1232136"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232139 for CVE-2022-49003",
          "url": "https://bugzilla.suse.com/1232139"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-49003"
    },
    {
      "cve": "CVE-2022-49005",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49005"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: ops: Fix bounds check for _sx controls\n\nFor _sx controls the semantics of the max field is not the usual one, max\nis the number of steps rather than the maximum value. This means that our\ncheck in snd_soc_put_volsw_sx() needs to just check against the maximum\nvalue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49005",
          "url": "https://www.suse.com/security/cve/CVE-2022-49005"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232150 for CVE-2022-49005",
          "url": "https://bugzilla.suse.com/1232150"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49005"
    },
    {
      "cve": "CVE-2022-49006",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49006"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Free buffers when a used dynamic event is removed\n\nAfter 65536 dynamic events have been added and removed, the \"type\" field\nof the event then uses the first type number that is available (not\ncurrently used by other events). A type number is the identifier of the\nbinary blobs in the tracing ring buffer (known as events) to map them to\nlogic that can parse the binary blob.\n\nThe issue is that if a dynamic event (like a kprobe event) is traced and\nis in the ring buffer, and then that event is removed (because it is\ndynamic, which means it can be created and destroyed), if another dynamic\nevent is created that has the same number that new event\u0027s logic on\nparsing the binary blob will be used.\n\nTo show how this can be an issue, the following can crash the kernel:\n\n # cd /sys/kernel/tracing\n # for i in `seq 65536`; do\n     echo \u0027p:kprobes/foo do_sys_openat2 $arg1:u32\u0027 \u003e kprobe_events\n # done\n\nFor every iteration of the above, the writing to the kprobe_events will\nremove the old event and create a new one (with the same format) and\nincrease the type number to the next available on until the type number\nreaches over 65535 which is the max number for the 16 bit type. After it\nreaches that number, the logic to allocate a new number simply looks for\nthe next available number. When an dynamic event is removed, that number\nis then available to be reused by the next dynamic event created. That is,\nonce the above reaches the max number, the number assigned to the event in\nthat loop will remain the same.\n\nNow that means deleting one dynamic event and created another will reuse\nthe previous events type number. This is where bad things can happen.\nAfter the above loop finishes, the kprobes/foo event which reads the\ndo_sys_openat2 function call\u0027s first parameter as an integer.\n\n # echo 1 \u003e kprobes/foo/enable\n # cat /etc/passwd \u003e /dev/null\n # cat trace\n             cat-2211    [005] ....  2007.849603: foo: (do_sys_openat2+0x0/0x130) arg1=4294967196\n             cat-2211    [005] ....  2007.849620: foo: (do_sys_openat2+0x0/0x130) arg1=4294967196\n             cat-2211    [005] ....  2007.849838: foo: (do_sys_openat2+0x0/0x130) arg1=4294967196\n             cat-2211    [005] ....  2007.849880: foo: (do_sys_openat2+0x0/0x130) arg1=4294967196\n # echo 0 \u003e kprobes/foo/enable\n\nNow if we delete the kprobe and create a new one that reads a string:\n\n # echo \u0027p:kprobes/foo do_sys_openat2 +0($arg2):string\u0027 \u003e kprobe_events\n\nAnd now we can the trace:\n\n # cat trace\n        sendmail-1942    [002] .....   530.136320: foo: (do_sys_openat2+0x0/0x240) arg1=             cat-2046    [004] .....   530.930817: foo: (do_sys_openat2+0x0/0x240) arg1=\"\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\"\n             cat-2046    [004] .....   530.930961: foo: (do_sys_openat2+0x0/0x240) arg1=\"\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\"\n             cat-2046    [004] .....   530.934278: foo: (do_sys_openat2+0x0/0x240) arg1=\"\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\"\n             cat-2046    [004] .....   530.934563: foo: (do_sys_openat2+0x0/0x240) arg1=\"\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\ufffd\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49006",
          "url": "https://www.suse.com/security/cve/CVE-2022-49006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232163 for CVE-2022-49006",
          "url": "https://bugzilla.suse.com/1232163"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-49006"
    },
    {
      "cve": "CVE-2022-49007",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49007"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix NULL pointer dereference in nilfs_palloc_commit_free_entry()\n\nSyzbot reported a null-ptr-deref bug:\n\n NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP\n frequency \u003c 30 seconds\n general protection fault, probably for non-canonical address\n 0xdffffc0000000002: 0000 [#1] PREEMPT SMP KASAN\n KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]\n CPU: 1 PID: 3603 Comm: segctord Not tainted\n 6.1.0-rc2-syzkaller-00105-gb229b6ca5abb #0\n Hardware name: Google Compute Engine/Google Compute Engine, BIOS Google\n 10/11/2022\n RIP: 0010:nilfs_palloc_commit_free_entry+0xe5/0x6b0\n fs/nilfs2/alloc.c:608\n Code: 00 00 00 00 fc ff df 80 3c 02 00 0f 85 cd 05 00 00 48 b8 00 00 00\n 00 00 fc ff df 4c 8b 73 08 49 8d 7e 10 48 89 fa 48 c1 ea 03 \u003c80\u003e 3c 02\n 00 0f 85 26 05 00 00 49 8b 46 10 be a6 00 00 00 48 c7 c7\n RSP: 0018:ffffc90003dff830 EFLAGS: 00010212\n RAX: dffffc0000000000 RBX: ffff88802594e218 RCX: 000000000000000d\n RDX: 0000000000000002 RSI: 0000000000002000 RDI: 0000000000000010\n RBP: ffff888071880222 R08: 0000000000000005 R09: 000000000000003f\n R10: 000000000000000d R11: 0000000000000000 R12: ffff888071880158\n R13: ffff88802594e220 R14: 0000000000000000 R15: 0000000000000004\n FS:  0000000000000000(0000) GS:ffff8880b9b00000(0000)\n knlGS:0000000000000000\n CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007fb1c08316a8 CR3: 0000000018560000 CR4: 0000000000350ee0\n Call Trace:\n  \u003cTASK\u003e\n  nilfs_dat_commit_free fs/nilfs2/dat.c:114 [inline]\n  nilfs_dat_commit_end+0x464/0x5f0 fs/nilfs2/dat.c:193\n  nilfs_dat_commit_update+0x26/0x40 fs/nilfs2/dat.c:236\n  nilfs_btree_commit_update_v+0x87/0x4a0 fs/nilfs2/btree.c:1940\n  nilfs_btree_commit_propagate_v fs/nilfs2/btree.c:2016 [inline]\n  nilfs_btree_propagate_v fs/nilfs2/btree.c:2046 [inline]\n  nilfs_btree_propagate+0xa00/0xd60 fs/nilfs2/btree.c:2088\n  nilfs_bmap_propagate+0x73/0x170 fs/nilfs2/bmap.c:337\n  nilfs_collect_file_data+0x45/0xd0 fs/nilfs2/segment.c:568\n  nilfs_segctor_apply_buffers+0x14a/0x470 fs/nilfs2/segment.c:1018\n  nilfs_segctor_scan_file+0x3f4/0x6f0 fs/nilfs2/segment.c:1067\n  nilfs_segctor_collect_blocks fs/nilfs2/segment.c:1197 [inline]\n  nilfs_segctor_collect fs/nilfs2/segment.c:1503 [inline]\n  nilfs_segctor_do_construct+0x12fc/0x6af0 fs/nilfs2/segment.c:2045\n  nilfs_segctor_construct+0x8e3/0xb30 fs/nilfs2/segment.c:2379\n  nilfs_segctor_thread_construct fs/nilfs2/segment.c:2487 [inline]\n  nilfs_segctor_thread+0x3c3/0xf30 fs/nilfs2/segment.c:2570\n  kthread+0x2e4/0x3a0 kernel/kthread.c:376\n  ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306\n  \u003c/TASK\u003e\n ...\n\nIf DAT metadata file is corrupted on disk, there is a case where\nreq-\u003epr_desc_bh is NULL and blocknr is 0 at nilfs_dat_commit_end() during\na b-tree operation that cascadingly updates ancestor nodes of the b-tree,\nbecause nilfs_dat_commit_alloc() for a lower level block can initialize\nthe blocknr on the same DAT entry between nilfs_dat_prepare_end() and\nnilfs_dat_commit_end().\n\nIf this happens, nilfs_dat_commit_end() calls nilfs_dat_commit_free()\nwithout valid buffer heads in req-\u003epr_desc_bh and req-\u003epr_bitmap_bh, and\ncauses the NULL pointer dereference above in\nnilfs_palloc_commit_free_entry() function, which leads to a crash.\n\nFix this by adding a NULL check on req-\u003epr_desc_bh and req-\u003epr_bitmap_bh\nbefore nilfs_palloc_commit_free_entry() in nilfs_dat_commit_free().\n\nThis also calls nilfs_error() in that case to notify that there is a fatal\nflaw in the filesystem metadata and prevent further operations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49007",
          "url": "https://www.suse.com/security/cve/CVE-2022-49007"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232170 for CVE-2022-49007",
          "url": "https://bugzilla.suse.com/1232170"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49007"
    },
    {
      "cve": "CVE-2022-49010",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49010"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (coretemp) Check for null before removing sysfs attrs\n\nIf coretemp_add_core() gets an error then pdata-\u003ecore_data[indx]\nis already NULL and has been kfreed. Don\u0027t pass that to\nsysfs_remove_group() as that will crash in sysfs_remove_group().\n\n[Shortened for readability]\n[91854.020159] sysfs: cannot create duplicate filename \u0027/devices/platform/coretemp.0/hwmon/hwmon2/temp20_label\u0027\n\u003ccpu offline\u003e\n[91855.126115] BUG: kernel NULL pointer dereference, address: 0000000000000188\n[91855.165103] #PF: supervisor read access in kernel mode\n[91855.194506] #PF: error_code(0x0000) - not-present page\n[91855.224445] PGD 0 P4D 0\n[91855.238508] Oops: 0000 [#1] PREEMPT SMP PTI\n...\n[91855.342716] RIP: 0010:sysfs_remove_group+0xc/0x80\n...\n[91855.796571] Call Trace:\n[91855.810524]  coretemp_cpu_offline+0x12b/0x1dd [coretemp]\n[91855.841738]  ? coretemp_cpu_online+0x180/0x180 [coretemp]\n[91855.871107]  cpuhp_invoke_callback+0x105/0x4b0\n[91855.893432]  cpuhp_thread_fun+0x8e/0x150\n...\n\nFix this by checking for NULL first.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49010",
          "url": "https://www.suse.com/security/cve/CVE-2022-49010"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232172 for CVE-2022-49010",
          "url": "https://bugzilla.suse.com/1232172"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49010"
    },
    {
      "cve": "CVE-2022-49011",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49011"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (coretemp) fix pci device refcount leak in nv1a_ram_new()\n\nAs comment of pci_get_domain_bus_and_slot() says, it returns\na pci device with refcount increment, when finish using it,\nthe caller must decrement the reference count by calling\npci_dev_put(). So call it after using to avoid refcount leak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49011",
          "url": "https://www.suse.com/security/cve/CVE-2022-49011"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232006 for CVE-2022-49011",
          "url": "https://bugzilla.suse.com/1232006"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49011"
    },
    {
      "cve": "CVE-2022-49012",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49012"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nafs: Fix server-\u003eactive leak in afs_put_server\n\nThe atomic_read was accidentally replaced with atomic_inc_return,\nwhich prevents the server from getting cleaned up and causes rmmod\nto hang with a warning:\n\n    Can\u0027t purge s=00000001",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49012",
          "url": "https://www.suse.com/security/cve/CVE-2022-49012"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232005 for CVE-2022-49012",
          "url": "https://bugzilla.suse.com/1232005"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49012"
    },
    {
      "cve": "CVE-2022-49014",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49014"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: tun: Fix use-after-free in tun_detach()\n\nsyzbot reported use-after-free in tun_detach() [1].  This causes call\ntrace like below:\n\n==================================================================\nBUG: KASAN: use-after-free in notifier_call_chain+0x1ee/0x200 kernel/notifier.c:75\nRead of size 8 at addr ffff88807324e2a8 by task syz-executor.0/3673\n\nCPU: 0 PID: 3673 Comm: syz-executor.0 Not tainted 6.1.0-rc5-syzkaller-00044-gcc675d22e422 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd1/0x138 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:284 [inline]\n print_report+0x15e/0x461 mm/kasan/report.c:395\n kasan_report+0xbf/0x1f0 mm/kasan/report.c:495\n notifier_call_chain+0x1ee/0x200 kernel/notifier.c:75\n call_netdevice_notifiers_info+0x86/0x130 net/core/dev.c:1942\n call_netdevice_notifiers_extack net/core/dev.c:1983 [inline]\n call_netdevice_notifiers net/core/dev.c:1997 [inline]\n netdev_wait_allrefs_any net/core/dev.c:10237 [inline]\n netdev_run_todo+0xbc6/0x1100 net/core/dev.c:10351\n tun_detach drivers/net/tun.c:704 [inline]\n tun_chr_close+0xe4/0x190 drivers/net/tun.c:3467\n __fput+0x27c/0xa90 fs/file_table.c:320\n task_work_run+0x16f/0x270 kernel/task_work.c:179\n exit_task_work include/linux/task_work.h:38 [inline]\n do_exit+0xb3d/0x2a30 kernel/exit.c:820\n do_group_exit+0xd4/0x2a0 kernel/exit.c:950\n get_signal+0x21b1/0x2440 kernel/signal.c:2858\n arch_do_signal_or_restart+0x86/0x2300 arch/x86/kernel/signal.c:869\n exit_to_user_mode_loop kernel/entry/common.c:168 [inline]\n exit_to_user_mode_prepare+0x15f/0x250 kernel/entry/common.c:203\n __syscall_exit_to_user_mode_work kernel/entry/common.c:285 [inline]\n syscall_exit_to_user_mode+0x1d/0x50 kernel/entry/common.c:296\n do_syscall_64+0x46/0xb0 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe cause of the issue is that sock_put() from __tun_detach() drops\nlast reference count for struct net, and then notifier_call_chain()\nfrom netdev_state_change() accesses that struct net.\n\nThis patch fixes the issue by calling sock_put() from tun_detach()\nafter all necessary accesses for the struct net has done.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49014",
          "url": "https://www.suse.com/security/cve/CVE-2022-49014"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231890 for CVE-2022-49014",
          "url": "https://bugzilla.suse.com/1231890"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232818 for CVE-2022-49014",
          "url": "https://bugzilla.suse.com/1232818"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-49014"
    },
    {
      "cve": "CVE-2022-49015",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49015"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hsr: Fix potential use-after-free\n\nThe skb is delivered to netif_rx() which may free it, after calling this,\ndereferencing skb may trigger use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49015",
          "url": "https://www.suse.com/security/cve/CVE-2022-49015"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231938 for CVE-2022-49015",
          "url": "https://bugzilla.suse.com/1231938"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1233021 for CVE-2022-49015",
          "url": "https://bugzilla.suse.com/1233021"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-49015"
    },
    {
      "cve": "CVE-2022-49016",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49016"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mdiobus: fix unbalanced node reference count\n\nI got the following report while doing device(mscc-miim) load test\nwith CONFIG_OF_UNITTEST and CONFIG_OF_DYNAMIC enabled:\n\n  OF: ERROR: memory leak, expected refcount 1 instead of 2,\n  of_node_get()/of_node_put() unbalanced - destroy cset entry:\n  attach overlay node /spi/soc@0/mdio@7107009c/ethernet-phy@0\n\nIf the \u0027fwnode\u0027 is not an acpi node, the refcount is get in\nfwnode_mdiobus_phy_device_register(), but it has never been\nput when the device is freed in the normal path. So call\nfwnode_handle_put() in phy_device_release() to avoid leak.\n\nIf it\u0027s an acpi node, it has never been get, but it\u0027s put\nin the error path, so call fwnode_handle_get() before\nphy_device_register() to keep get/put operation balanced.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49016",
          "url": "https://www.suse.com/security/cve/CVE-2022-49016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231937 for CVE-2022-49016",
          "url": "https://bugzilla.suse.com/1231937"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49016"
    },
    {
      "cve": "CVE-2022-49017",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49017"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: re-fetch skb cb after tipc_msg_validate\n\nAs the call trace shows, the original skb was freed in tipc_msg_validate(),\nand dereferencing the old skb cb would cause an use-after-free crash.\n\n  BUG: KASAN: use-after-free in tipc_crypto_rcv_complete+0x1835/0x2240 [tipc]\n  Call Trace:\n   \u003cIRQ\u003e\n   tipc_crypto_rcv_complete+0x1835/0x2240 [tipc]\n   tipc_crypto_rcv+0xd32/0x1ec0 [tipc]\n   tipc_rcv+0x744/0x1150 [tipc]\n  ...\n  Allocated by task 47078:\n   kmem_cache_alloc_node+0x158/0x4d0\n   __alloc_skb+0x1c1/0x270\n   tipc_buf_acquire+0x1e/0xe0 [tipc]\n   tipc_msg_create+0x33/0x1c0 [tipc]\n   tipc_link_build_proto_msg+0x38a/0x2100 [tipc]\n   tipc_link_timeout+0x8b8/0xef0 [tipc]\n   tipc_node_timeout+0x2a1/0x960 [tipc]\n   call_timer_fn+0x2d/0x1c0\n  ...\n  Freed by task 47078:\n   tipc_msg_validate+0x7b/0x440 [tipc]\n   tipc_crypto_rcv_complete+0x4b5/0x2240 [tipc]\n   tipc_crypto_rcv+0xd32/0x1ec0 [tipc]\n   tipc_rcv+0x744/0x1150 [tipc]\n\nThis patch fixes it by re-fetching the skb cb from the new allocated skb\nafter calling tipc_msg_validate().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49017",
          "url": "https://www.suse.com/security/cve/CVE-2022-49017"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232004 for CVE-2022-49017",
          "url": "https://bugzilla.suse.com/1232004"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49017"
    },
    {
      "cve": "CVE-2022-49019",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49019"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: nixge: fix NULL dereference\n\nIn function nixge_hw_dma_bd_release() dereference of NULL pointer\npriv-\u003erx_bd_v is possible for the case of its allocation failure in\nnixge_hw_dma_bd_init().\n\nMove for() loop with priv-\u003erx_bd_v dereference under the check for\nits validity.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49019",
          "url": "https://www.suse.com/security/cve/CVE-2022-49019"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231940 for CVE-2022-49019",
          "url": "https://bugzilla.suse.com/1231940"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49019"
    },
    {
      "cve": "CVE-2022-49020",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49020"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/9p: Fix a potential socket leak in p9_socket_open\n\nBoth p9_fd_create_tcp() and p9_fd_create_unix() will call\np9_socket_open(). If the creation of p9_trans_fd fails,\np9_fd_create_tcp() and p9_fd_create_unix() will return an\nerror directly instead of releasing the cscoket, which will\nresult in a socket leak.\n\nThis patch adds sock_release() to fix the leak issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49020",
          "url": "https://www.suse.com/security/cve/CVE-2022-49020"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232175 for CVE-2022-49020",
          "url": "https://bugzilla.suse.com/1232175"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-49020"
    },
    {
      "cve": "CVE-2022-49021",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49021"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: fix null-ptr-deref while probe() failed\n\nI got a null-ptr-deref report as following when doing fault injection test:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000058\nOops: 0000 [#1] PREEMPT SMP KASAN PTI\nCPU: 1 PID: 253 Comm: 507-spi-dm9051 Tainted: G    B            N 6.1.0-rc3+\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.13.0-1ubuntu1.1 04/01/2014\nRIP: 0010:klist_put+0x2d/0xd0\nCall Trace:\n \u003cTASK\u003e\n klist_remove+0xf1/0x1c0\n device_release_driver_internal+0x23e/0x2d0\n bus_remove_device+0x1bd/0x240\n device_del+0x357/0x770\n phy_device_remove+0x11/0x30\n mdiobus_unregister+0xa5/0x140\n release_nodes+0x6a/0xa0\n devres_release_all+0xf8/0x150\n device_unbind_cleanup+0x19/0xd0\n\n//probe path:\nphy_device_register()\n  device_add()\n\nphy_connect\n  phy_attach_direct() //set device driver\n    probe() //it\u0027s failed, driver is not bound\n    device_bind_driver() // probe failed, it\u0027s not called\n\n//remove path:\nphy_device_remove()\n  device_del()\n    device_release_driver_internal()\n      __device_release_driver() //dev-\u003edrv is not NULL\n        klist_remove() \u003c- knode_driver is not added yet, cause null-ptr-deref\n\nIn phy_attach_direct(), after setting the \u0027dev-\u003edriver\u0027, probe() fails,\ndevice_bind_driver() is not called, so the knode_driver-\u003en_klist is not\nset, then it causes null-ptr-deref in __device_release_driver() while\ndeleting device. Fix this by setting dev-\u003edriver to NULL in the error\npath in phy_attach_direct().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49021",
          "url": "https://www.suse.com/security/cve/CVE-2022-49021"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231939 for CVE-2022-49021",
          "url": "https://bugzilla.suse.com/1231939"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49021"
    },
    {
      "cve": "CVE-2022-49022",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49022"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac8021: fix possible oob access in ieee80211_get_rate_duration\n\nFix possible out-of-bound access in ieee80211_get_rate_duration routine\nas reported by the following UBSAN report:\n\nUBSAN: array-index-out-of-bounds in net/mac80211/airtime.c:455:47\nindex 15 is out of range for type \u0027u16 [12]\u0027\nCPU: 2 PID: 217 Comm: kworker/u32:10 Not tainted 6.1.0-060100rc3-generic\nHardware name: Acer Aspire TC-281/Aspire TC-281, BIOS R01-A2 07/18/2017\nWorkqueue: mt76 mt76u_tx_status_data [mt76_usb]\nCall Trace:\n \u003cTASK\u003e\n show_stack+0x4e/0x61\n dump_stack_lvl+0x4a/0x6f\n dump_stack+0x10/0x18\n ubsan_epilogue+0x9/0x43\n __ubsan_handle_out_of_bounds.cold+0x42/0x47\nieee80211_get_rate_duration.constprop.0+0x22f/0x2a0 [mac80211]\n ? ieee80211_tx_status_ext+0x32e/0x640 [mac80211]\n ieee80211_calc_rx_airtime+0xda/0x120 [mac80211]\n ieee80211_calc_tx_airtime+0xb4/0x100 [mac80211]\n mt76x02_send_tx_status+0x266/0x480 [mt76x02_lib]\n mt76x02_tx_status_data+0x52/0x80 [mt76x02_lib]\n mt76u_tx_status_data+0x67/0xd0 [mt76_usb]\n process_one_work+0x225/0x400\n worker_thread+0x50/0x3e0\n ? process_one_work+0x400/0x400\n kthread+0xe9/0x110\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x22/0x30",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49022",
          "url": "https://www.suse.com/security/cve/CVE-2022-49022"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231962 for CVE-2022-49022",
          "url": "https://bugzilla.suse.com/1231962"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49022"
    },
    {
      "cve": "CVE-2022-49023",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49023"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: fix buffer overflow in elem comparison\n\nFor vendor elements, the code here assumes that 5 octets\nare present without checking. Since the element itself is\nalready checked to fit, we only need to check the length.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49023",
          "url": "https://www.suse.com/security/cve/CVE-2022-49023"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231961 for CVE-2022-49023",
          "url": "https://bugzilla.suse.com/1231961"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1233022 for CVE-2022-49023",
          "url": "https://bugzilla.suse.com/1233022"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-49023"
    },
    {
      "cve": "CVE-2022-49024",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49024"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: m_can: pci: add missing m_can_class_free_dev() in probe/remove methods\n\nIn m_can_pci_remove() and error handling path of m_can_pci_probe(),\nm_can_class_free_dev() should be called to free resource allocated by\nm_can_class_allocate_dev(), otherwise there will be memleak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49024",
          "url": "https://www.suse.com/security/cve/CVE-2022-49024"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232001 for CVE-2022-49024",
          "url": "https://bugzilla.suse.com/1232001"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49024"
    },
    {
      "cve": "CVE-2022-49025",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49025"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix use-after-free when reverting termination table\n\nWhen having multiple dests with termination tables and second one\nor afterwards fails the driver reverts usage of term tables but\ndoesn\u0027t reset the assignment in attr-\u003edests[num_vport_dests].termtbl\nwhich case a use-after-free when releasing the rule.\nFix by resetting the assignment of termtbl to null.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49025",
          "url": "https://www.suse.com/security/cve/CVE-2022-49025"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231960 for CVE-2022-49025",
          "url": "https://bugzilla.suse.com/1231960"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1233023 for CVE-2022-49025",
          "url": "https://bugzilla.suse.com/1233023"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-49025"
    },
    {
      "cve": "CVE-2022-49026",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49026"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ne100: Fix possible use after free in e100_xmit_prepare\n\nIn e100_xmit_prepare(), if we can\u0027t map the skb, then return -ENOMEM, so\ne100_xmit_frame() will return NETDEV_TX_BUSY and the upper layer will\nresend the skb. But the skb is already freed, which will cause UAF bug\nwhen the upper layer resends the skb.\n\nRemove the harmful free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49026",
          "url": "https://www.suse.com/security/cve/CVE-2022-49026"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231997 for CVE-2022-49026",
          "url": "https://bugzilla.suse.com/1231997"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49026"
    },
    {
      "cve": "CVE-2022-49027",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49027"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: Fix error handling in iavf_init_module()\n\nThe iavf_init_module() won\u0027t destroy workqueue when pci_register_driver()\nfailed. Call destroy_workqueue() when pci_register_driver() failed to\nprevent the resource leak.\n\nSimilar to the handling of u132_hcd_init in commit f276e002793c\n(\"usb: u132-hcd: fix resource leak\")",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49027",
          "url": "https://www.suse.com/security/cve/CVE-2022-49027"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232007 for CVE-2022-49027",
          "url": "https://bugzilla.suse.com/1232007"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49027"
    },
    {
      "cve": "CVE-2022-49028",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49028"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nixgbevf: Fix resource leak in ixgbevf_init_module()\n\nixgbevf_init_module() won\u0027t destroy the workqueue created by\ncreate_singlethread_workqueue() when pci_register_driver() failed. Add\ndestroy_workqueue() in fail path to prevent the resource leak.\n\nSimilar to the handling of u132_hcd_init in commit f276e002793c\n(\"usb: u132-hcd: fix resource leak\")",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49028",
          "url": "https://www.suse.com/security/cve/CVE-2022-49028"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231996 for CVE-2022-49028",
          "url": "https://bugzilla.suse.com/1231996"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49028"
    },
    {
      "cve": "CVE-2022-49029",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49029"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (ibmpex) Fix possible UAF when ibmpex_register_bmc() fails\n\nSmatch report warning as follows:\n\ndrivers/hwmon/ibmpex.c:509 ibmpex_register_bmc() warn:\n  \u0027\u0026data-\u003elist\u0027 not removed from list\n\nIf ibmpex_find_sensors() fails in ibmpex_register_bmc(), data will\nbe freed, but data-\u003elist will not be removed from driver_data.bmc_data,\nthen list traversal may cause UAF.\n\nFix by removeing it from driver_data.bmc_data before free().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49029",
          "url": "https://www.suse.com/security/cve/CVE-2022-49029"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231995 for CVE-2022-49029",
          "url": "https://bugzilla.suse.com/1231995"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49029"
    },
    {
      "cve": "CVE-2022-49031",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49031"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: health: afe4403: Fix oob read in afe4403_read_raw\n\nKASAN report out-of-bounds read as follows:\n\nBUG: KASAN: global-out-of-bounds in afe4403_read_raw+0x42e/0x4c0\nRead of size 4 at addr ffffffffc02ac638 by task cat/279\n\nCall Trace:\n afe4403_read_raw\n iio_read_channel_info\n dev_attr_show\n\nThe buggy address belongs to the variable:\n afe4403_channel_leds+0x18/0xffffffffffffe9e0\n\nThis issue can be reproduced by singe command:\n\n $ cat /sys/bus/spi/devices/spi0.0/iio\\:device0/in_intensity6_raw\n\nThe array size of afe4403_channel_leds is less than channels, so access\nwith chan-\u003eaddress cause OOB read in afe4403_read_raw. Fix it by moving\naccess before use it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49031",
          "url": "https://www.suse.com/security/cve/CVE-2022-49031"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231992 for CVE-2022-49031",
          "url": "https://bugzilla.suse.com/1231992"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49031"
    },
    {
      "cve": "CVE-2022-49032",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-49032"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: health: afe4404: Fix oob read in afe4404_[read|write]_raw\n\nKASAN report out-of-bounds read as follows:\n\nBUG: KASAN: global-out-of-bounds in afe4404_read_raw+0x2ce/0x380\nRead of size 4 at addr ffffffffc00e4658 by task cat/278\n\nCall Trace:\n afe4404_read_raw\n iio_read_channel_info\n dev_attr_show\n\nThe buggy address belongs to the variable:\n afe4404_channel_leds+0x18/0xffffffffffffe9c0\n\nThis issue can be reproduce by singe command:\n\n $ cat /sys/bus/i2c/devices/0-0058/iio\\:device0/in_intensity6_raw\n\nThe array size of afe4404_channel_leds and afe4404_channel_offdacs\nare less than channels, so access with chan-\u003eaddress cause OOB read\nin afe4404_[read|write]_raw. Fix it by moving access before use them.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-49032",
          "url": "https://www.suse.com/security/cve/CVE-2022-49032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231991 for CVE-2022-49032",
          "url": "https://bugzilla.suse.com/1231991"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-49032"
    },
    {
      "cve": "CVE-2023-2166",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-2166"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A null pointer dereference issue was found in can protocol in net/can/af_can.c in the Linux before Linux. ml_priv may not be initialized in the receive path of CAN frames. A local user could use this flaw to crash the system or potentially cause a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-2166",
          "url": "https://www.suse.com/security/cve/CVE-2023-2166"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1210627 for CVE-2023-2166",
          "url": "https://bugzilla.suse.com/1210627"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-2166"
    },
    {
      "cve": "CVE-2023-28327",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-28327"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A NULL pointer dereference flaw was found in the UNIX protocol in net/unix/diag.c In unix_diag_get_exact in the Linux Kernel. The newly allocated skb does not have sk, leading to a NULL pointer. This flaw allows a local user to crash or potentially cause a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-28327",
          "url": "https://www.suse.com/security/cve/CVE-2023-28327"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209290 for CVE-2023-28327",
          "url": "https://bugzilla.suse.com/1209290"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-28327"
    },
    {
      "cve": "CVE-2023-52766",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52766"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni3c: mipi-i3c-hci: Fix out of bounds access in hci_dma_irq_handler\n\nDo not loop over ring headers in hci_dma_irq_handler() that are not\nallocated and enabled in hci_dma_init(). Otherwise out of bounds access\nwill occur from rings-\u003eheaders[i] access when i \u003e= number of allocated\nring headers.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52766",
          "url": "https://www.suse.com/security/cve/CVE-2023-52766"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230620 for CVE-2023-52766",
          "url": "https://bugzilla.suse.com/1230620"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52766"
    },
    {
      "cve": "CVE-2023-52800",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52800"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix htt pktlog locking\n\nThe ath11k active pdevs are protected by RCU but the htt pktlog handling\ncode calling ath11k_mac_get_ar_by_pdev_id() was not marked as a\nread-side critical section.\n\nMark the code in question as an RCU read-side critical section to avoid\nany potential use-after-free issues.\n\nCompile tested only.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52800",
          "url": "https://www.suse.com/security/cve/CVE-2023-52800"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230600 for CVE-2023-52800",
          "url": "https://bugzilla.suse.com/1230600"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52800"
    },
    {
      "cve": "CVE-2023-52881",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52881"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: do not accept ACK of bytes we never sent\n\nThis patch is based on a detailed report and ideas from Yepeng Pan\nand Christian Rossow.\n\nACK seq validation is currently following RFC 5961 5.2 guidelines:\n\n   The ACK value is considered acceptable only if\n   it is in the range of ((SND.UNA - MAX.SND.WND) \u003c= SEG.ACK \u003c=\n   SND.NXT).  All incoming segments whose ACK value doesn\u0027t satisfy the\n   above condition MUST be discarded and an ACK sent back.  It needs to\n   be noted that RFC 793 on page 72 (fifth check) says: \"If the ACK is a\n   duplicate (SEG.ACK \u003c SND.UNA), it can be ignored.  If the ACK\n   acknowledges something not yet sent (SEG.ACK \u003e SND.NXT) then send an\n   ACK, drop the segment, and return\".  The \"ignored\" above implies that\n   the processing of the incoming data segment continues, which means\n   the ACK value is treated as acceptable.  This mitigation makes the\n   ACK check more stringent since any ACK \u003c SND.UNA wouldn\u0027t be\n   accepted, instead only ACKs that are in the range ((SND.UNA -\n   MAX.SND.WND) \u003c= SEG.ACK \u003c= SND.NXT) get through.\n\nThis can be refined for new (and possibly spoofed) flows,\nby not accepting ACK for bytes that were never sent.\n\nThis greatly improves TCP security at a little cost.\n\nI added a Fixes: tag to make sure this patch will reach stable trees,\neven if the \u0027blamed\u0027 patch was adhering to the RFC.\n\ntp-\u003ebytes_acked was added in linux-4.2\n\nFollowing packetdrill test (courtesy of Yepeng Pan) shows\nthe issue at hand:\n\n0 socket(..., SOCK_STREAM, IPPROTO_TCP) = 3\n+0 setsockopt(3, SOL_SOCKET, SO_REUSEADDR, [1], 4) = 0\n+0 bind(3, ..., ...) = 0\n+0 listen(3, 1024) = 0\n\n// ---------------- Handshake ------------------- //\n\n// when window scale is set to 14 the window size can be extended to\n// 65535 * (2^14) = 1073725440. Linux would accept an ACK packet\n// with ack number in (Server_ISN+1-1073725440. Server_ISN+1)\n// ,though this ack number acknowledges some data never\n// sent by the server.\n\n+0 \u003c S 0:0(0) win 65535 \u003cmss 1400,nop,wscale 14\u003e\n+0 \u003e S. 0:0(0) ack 1 \u003c...\u003e\n+0 \u003c . 1:1(0) ack 1 win 65535\n+0 accept(3, ..., ...) = 4\n\n// For the established connection, we send an ACK packet,\n// the ack packet uses ack number 1 - 1073725300 + 2^32,\n// where 2^32 is used to wrap around.\n// Note: we used 1073725300 instead of 1073725440 to avoid possible\n// edge cases.\n// 1 - 1073725300 + 2^32 = 3221241997\n\n// Oops, old kernels happily accept this packet.\n+0 \u003c . 1:1001(1000) ack 3221241997 win 65535\n\n// After the kernel fix the following will be replaced by a challenge ACK,\n// and prior malicious frame would be dropped.\n+0 \u003e . 1:1(0) ack 1001",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52881",
          "url": "https://www.suse.com/security/cve/CVE-2023-52881"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223384 for CVE-2023-52881",
          "url": "https://bugzilla.suse.com/1223384"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225611 for CVE-2023-52881",
          "url": "https://bugzilla.suse.com/1225611"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1226152 for CVE-2023-52881",
          "url": "https://bugzilla.suse.com/1226152"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52881"
    },
    {
      "cve": "CVE-2023-52919",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52919"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: nci: fix possible NULL pointer dereference in send_acknowledge()\n\nHandle memory allocation failure from nci_skb_alloc() (calling\nalloc_skb()) to avoid possible NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52919",
          "url": "https://www.suse.com/security/cve/CVE-2023-52919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231988 for CVE-2023-52919",
          "url": "https://bugzilla.suse.com/1231988"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52919"
    },
    {
      "cve": "CVE-2023-6270",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-6270"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on `struct net_device`, and a use-after-free can be triggered by racing between the free on the struct and the access through the `skbtxq` global queue. This could lead to a denial of service condition or potential code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-6270",
          "url": "https://www.suse.com/security/cve/CVE-2023-6270"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218562 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1218562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218813 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1218813"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221578 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1221578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221598 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1221598"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223016 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1223016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1227675 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1227675"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-6270"
    },
    {
      "cve": "CVE-2024-27043",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27043"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: edia: dvbdev: fix a use-after-free\n\nIn dvb_register_device, *pdvbdev is set equal to dvbdev, which is freed\nin several error-handling paths. However, *pdvbdev is not set to NULL\nafter dvbdev\u0027s deallocation, causing use-after-frees in many places,\nfor example, in the following call chain:\n\nbudget_register\n  |-\u003e dvb_dmxdev_init\n        |-\u003e dvb_register_device\n  |-\u003e dvb_dmxdev_release\n        |-\u003e dvb_unregister_device\n              |-\u003e dvb_remove_device\n                    |-\u003e dvb_device_put\n                          |-\u003e kref_put\n\nWhen calling dvb_unregister_device, dmxdev-\u003edvbdev (i.e. *pdvbdev in\ndvb_register_device) could point to memory that had been freed in\ndvb_register_device. Thereafter, this pointer is transferred to\nkref_put and triggering a use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27043",
          "url": "https://www.suse.com/security/cve/CVE-2024-27043"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218562 for CVE-2024-27043",
          "url": "https://bugzilla.suse.com/1218562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223824 for CVE-2024-27043",
          "url": "https://bugzilla.suse.com/1223824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223825 for CVE-2024-27043",
          "url": "https://bugzilla.suse.com/1223825"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-27043"
    },
    {
      "cve": "CVE-2024-36244",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-36244"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: taprio: extend minimum interval restriction to entire cycle too\n\nIt is possible for syzbot to side-step the restriction imposed by the\nblamed commit in the Fixes: tag, because the taprio UAPI permits a\ncycle-time different from (and potentially shorter than) the sum of\nentry intervals.\n\nWe need one more restriction, which is that the cycle time itself must\nbe larger than N * ETH_ZLEN bit times, where N is the number of schedule\nentries. This restriction needs to apply regardless of whether the cycle\ntime came from the user or was the implicit, auto-calculated value, so\nwe move the existing \"cycle == 0\" check outside the \"if \"(!new-\u003ecycle_time)\"\nbranch. This way covers both conditions and scenarios.\n\nAdd a selftest which illustrates the issue triggered by syzbot.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-36244",
          "url": "https://www.suse.com/security/cve/CVE-2024-36244"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1226797 for CVE-2024-36244",
          "url": "https://bugzilla.suse.com/1226797"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.8,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-36244"
    },
    {
      "cve": "CVE-2024-36957",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-36957"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-af: avoid off-by-one read from userspace\n\nWe try to access count + 1 byte from userspace with memdup_user(buffer,\ncount + 1). However, the userspace only provides buffer of count bytes and\nonly these count bytes are verified to be okay to access. To ensure the\ncopied buffer is NUL terminated, we use memdup_user_nul instead.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-36957",
          "url": "https://www.suse.com/security/cve/CVE-2024-36957"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225762 for CVE-2024-36957",
          "url": "https://bugzilla.suse.com/1225762"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-36957"
    },
    {
      "cve": "CVE-2024-39476",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-39476"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix deadlock that raid5d() wait for itself to clear MD_SB_CHANGE_PENDING\n\nXiao reported that lvm2 test lvconvert-raid-takeover.sh can hang with\nsmall possibility, the root cause is exactly the same as commit\nbed9e27baf52 (\"Revert \"md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d\"\")\n\nHowever, Dan reported another hang after that, and junxiao investigated\nthe problem and found out that this is caused by plugged bio can\u0027t issue\nfrom raid5d().\n\nCurrent implementation in raid5d() has a weird dependence:\n\n1) md_check_recovery() from raid5d() must hold \u0027reconfig_mutex\u0027 to clear\n   MD_SB_CHANGE_PENDING;\n2) raid5d() handles IO in a deadloop, until all IO are issued;\n3) IO from raid5d() must wait for MD_SB_CHANGE_PENDING to be cleared;\n\nThis behaviour is introduce before v2.6, and for consequence, if other\ncontext hold \u0027reconfig_mutex\u0027, and md_check_recovery() can\u0027t update\nsuper_block, then raid5d() will waste one cpu 100% by the deadloop, until\n\u0027reconfig_mutex\u0027 is released.\n\nRefer to the implementation from raid1 and raid10, fix this problem by\nskipping issue IO if MD_SB_CHANGE_PENDING is still set after\nmd_check_recovery(), daemon thread will be woken up when \u0027reconfig_mutex\u0027\nis released. Meanwhile, the hang problem will be fixed as well.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-39476",
          "url": "https://www.suse.com/security/cve/CVE-2024-39476"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1227437 for CVE-2024-39476",
          "url": "https://bugzilla.suse.com/1227437"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-39476"
    },
    {
      "cve": "CVE-2024-40965",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-40965"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: lpi2c: Avoid calling clk_get_rate during transfer\n\nInstead of repeatedly calling clk_get_rate for each transfer, lock\nthe clock rate and cache the value.\nA deadlock has been observed while adding tlv320aic32x4 audio codec to\nthe system. When this clock provider adds its clock, the clk mutex is\nlocked already, it needs to access i2c, which in return needs the mutex\nfor clk_get_rate as well.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-40965",
          "url": "https://www.suse.com/security/cve/CVE-2024-40965"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1227885 for CVE-2024-40965",
          "url": "https://bugzilla.suse.com/1227885"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-40965"
    },
    {
      "cve": "CVE-2024-42145",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-42145"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/core: Implement a limit on UMAD receive List\n\nThe existing behavior of ib_umad, which maintains received MAD\npackets in an unbounded list, poses a risk of uncontrolled growth.\nAs user-space applications extract packets from this list, the rate\nof extraction may not match the rate of incoming packets, leading\nto potential list overflow.\n\nTo address this, we introduce a limit to the size of the list. After\nconsidering typical scenarios, such as OpenSM processing, which can\nhandle approximately 100k packets per second, and the 1-second retry\ntimeout for most packets, we set the list size limit to 200k. Packets\nreceived beyond this limit are dropped, assuming they are likely timed\nout by the time they are handled by user-space.\n\nNotably, packets queued on the receive list due to reasons like\ntimed-out sends are preserved even when the list is full.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-42145",
          "url": "https://www.suse.com/security/cve/CVE-2024-42145"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223384 for CVE-2024-42145",
          "url": "https://bugzilla.suse.com/1223384"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1228743 for CVE-2024-42145",
          "url": "https://bugzilla.suse.com/1228743"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1228744 for CVE-2024-42145",
          "url": "https://bugzilla.suse.com/1228744"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-42145"
    },
    {
      "cve": "CVE-2024-42226",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-42226"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-42226",
          "url": "https://www.suse.com/security/cve/CVE-2024-42226"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1228709 for CVE-2024-42226",
          "url": "https://bugzilla.suse.com/1228709"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-42226"
    },
    {
      "cve": "CVE-2024-42253",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-42253"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: pca953x: fix pca953x_irq_bus_sync_unlock race\n\nEnsure that `i2c_lock\u0027 is held when setting interrupt latch and mask in\npca953x_irq_bus_sync_unlock() in order to avoid races.\n\nThe other (non-probe) call site pca953x_gpio_set_multiple() ensures the\nlock is held before calling pca953x_write_regs().\n\nThe problem occurred when a request raced against irq_bus_sync_unlock()\napproximately once per thousand reboots on an i.MX8MP based system.\n\n * Normal case\n\n   0-0022: write register AI|3a {03,02,00,00,01} Input latch P0\n   0-0022: write register AI|49 {fc,fd,ff,ff,fe} Interrupt mask P0\n   0-0022: write register AI|08 {ff,00,00,00,00} Output P3\n   0-0022: write register AI|12 {fc,00,00,00,00} Config P3\n\n * Race case\n\n   0-0022: write register AI|08 {ff,00,00,00,00} Output P3\n   0-0022: write register AI|08 {03,02,00,00,01} *** Wrong register ***\n   0-0022: write register AI|12 {fc,00,00,00,00} Config P3\n   0-0022: write register AI|49 {fc,fd,ff,ff,fe} Interrupt mask P0",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-42253",
          "url": "https://www.suse.com/security/cve/CVE-2024-42253"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1229005 for CVE-2024-42253",
          "url": "https://bugzilla.suse.com/1229005"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-42253"
    },
    {
      "cve": "CVE-2024-44931",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-44931"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: prevent potential speculation leaks in gpio_device_get_desc()\n\nUserspace may trigger a speculative read of an address outside the gpio\ndescriptor array.\nUsers can do that by calling gpio_ioctl() with an offset out of range.\nOffset is copied from user and then used as an array index to get\nthe gpio descriptor without sanitization in gpio_device_get_desc().\n\nThis change ensures that the offset is sanitized by using\narray_index_nospec() to mitigate any possibility of speculative\ninformation leaks.\n\nThis bug was discovered and resolved using Coverity Static Analysis\nSecurity Testing (SAST) by Synopsys, Inc.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-44931",
          "url": "https://www.suse.com/security/cve/CVE-2024-44931"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1229837 for CVE-2024-44931",
          "url": "https://bugzilla.suse.com/1229837"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-44931"
    },
    {
      "cve": "CVE-2024-44947",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-44947"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: Initialize beyond-EOF page contents before setting uptodate\n\nfuse_notify_store(), unlike fuse_do_readpage(), does not enable page\nzeroing (because it can be used to change partial page contents).\n\nSo fuse_notify_store() must be more careful to fully initialize page\ncontents (including parts of the page that are beyond end-of-file)\nbefore marking the page uptodate.\n\nThe current code can leave beyond-EOF page contents uninitialized, which\nmakes these uninitialized page contents visible to userspace via mmap().\n\nThis is an information leak, but only affects systems which do not\nenable init-on-alloc (via CONFIG_INIT_ON_ALLOC_DEFAULT_ON=y or the\ncorresponding kernel command line parameter).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-44947",
          "url": "https://www.suse.com/security/cve/CVE-2024-44947"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1229456 for CVE-2024-44947",
          "url": "https://bugzilla.suse.com/1229456"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230098 for CVE-2024-44947",
          "url": "https://bugzilla.suse.com/1230098"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-44947"
    },
    {
      "cve": "CVE-2024-44958",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-44958"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/smt: Fix unbalance sched_smt_present dec/inc\n\nI got the following warn report while doing stress test:\n\njump label: negative count!\nWARNING: CPU: 3 PID: 38 at kernel/jump_label.c:263 static_key_slow_try_dec+0x9d/0xb0\nCall Trace:\n \u003cTASK\u003e\n __static_key_slow_dec_cpuslocked+0x16/0x70\n sched_cpu_deactivate+0x26e/0x2a0\n cpuhp_invoke_callback+0x3ad/0x10d0\n cpuhp_thread_fun+0x3f5/0x680\n smpboot_thread_fn+0x56d/0x8d0\n kthread+0x309/0x400\n ret_from_fork+0x41/0x70\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nBecause when cpuset_cpu_inactive() fails in sched_cpu_deactivate(),\nthe cpu offline failed, but sched_smt_present is decremented before\ncalling sched_cpu_deactivate(), it leads to unbalanced dec/inc, so\nfix it by incrementing sched_smt_present in the error path.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-44958",
          "url": "https://www.suse.com/security/cve/CVE-2024-44958"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230179 for CVE-2024-44958",
          "url": "https://bugzilla.suse.com/1230179"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-44958"
    },
    {
      "cve": "CVE-2024-45016",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-45016"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetem: fix return value if duplicate enqueue fails\n\nThere is a bug in netem_enqueue() introduced by\ncommit 5845f706388a (\"net: netem: fix skb length BUG_ON in __skb_to_sgvec\")\nthat can lead to a use-after-free.\n\nThis commit made netem_enqueue() always return NET_XMIT_SUCCESS\nwhen a packet is duplicated, which can cause the parent qdisc\u0027s q.qlen\nto be mistakenly incremented. When this happens qlen_notify() may be\nskipped on the parent during destruction, leaving a dangling pointer\nfor some classful qdiscs like DRR.\n\nThere are two ways for the bug happen:\n\n- If the duplicated packet is dropped by rootq-\u003eenqueue() and then\n  the original packet is also dropped.\n- If rootq-\u003eenqueue() sends the duplicated packet to a different qdisc\n  and the original packet is dropped.\n\nIn both cases NET_XMIT_SUCCESS is returned even though no packets\nare enqueued at the netem qdisc.\n\nThe fix is to defer the enqueue of the duplicate packet until after\nthe original packet has been guaranteed to return NET_XMIT_SUCCESS.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-45016",
          "url": "https://www.suse.com/security/cve/CVE-2024-45016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230429 for CVE-2024-45016",
          "url": "https://bugzilla.suse.com/1230429"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230998 for CVE-2024-45016",
          "url": "https://bugzilla.suse.com/1230998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-45016"
    },
    {
      "cve": "CVE-2024-45025",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-45025"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE\n\ncopy_fd_bitmaps(new, old, count) is expected to copy the first\ncount/BITS_PER_LONG bits from old-\u003efull_fds_bits[] and fill\nthe rest with zeroes.  What it does is copying enough words\n(BITS_TO_LONGS(count/BITS_PER_LONG)), then memsets the rest.\nThat works fine, *if* all bits past the cutoff point are\nclear.  Otherwise we are risking garbage from the last word\nwe\u0027d copied.\n\nFor most of the callers that is true - expand_fdtable() has\ncount equal to old-\u003emax_fds, so there\u0027s no open descriptors\npast count, let alone fully occupied words in -\u003eopen_fds[],\nwhich is what bits in -\u003efull_fds_bits[] correspond to.\n\nThe other caller (dup_fd()) passes sane_fdtable_size(old_fdt, max_fds),\nwhich is the smallest multiple of BITS_PER_LONG that covers all\nopened descriptors below max_fds.  In the common case (copying on\nfork()) max_fds is ~0U, so all opened descriptors will be below\nit and we are fine, by the same reasons why the call in expand_fdtable()\nis safe.\n\nUnfortunately, there is a case where max_fds is less than that\nand where we might, indeed, end up with junk in -\u003efull_fds_bits[] -\nclose_range(from, to, CLOSE_RANGE_UNSHARE) with\n\t* descriptor table being currently shared\n\t* \u0027to\u0027 being above the current capacity of descriptor table\n\t* \u0027from\u0027 being just under some chunk of opened descriptors.\nIn that case we end up with observably wrong behaviour - e.g. spawn\na child with CLONE_FILES, get all descriptors in range 0..127 open,\nthen close_range(64, ~0U, CLOSE_RANGE_UNSHARE) and watch dup(0) ending\nup with descriptor #128, despite #64 being observably not open.\n\nThe minimally invasive fix would be to deal with that in dup_fd().\nIf this proves to add measurable overhead, we can go that way, but\nlet\u0027s try to fix copy_fd_bitmaps() first.\n\n* new helper: bitmap_copy_and_expand(to, from, bits_to_copy, size).\n* make copy_fd_bitmaps() take the bitmap size in words, rather than\nbits; it\u0027s \u0027count\u0027 argument is always a multiple of BITS_PER_LONG,\nso we are not losing any information, and that way we can use the\nsame helper for all three bitmaps - compiler will see that count\nis a multiple of BITS_PER_LONG for the large ones, so it\u0027ll generate\nplain memcpy()+memset().\n\nReproducer added to tools/testing/selftests/core/close_range_test.c",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-45025",
          "url": "https://www.suse.com/security/cve/CVE-2024-45025"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230456 for CVE-2024-45025",
          "url": "https://bugzilla.suse.com/1230456"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-45025"
    },
    {
      "cve": "CVE-2024-46678",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46678"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: change ipsec_lock from spin lock to mutex\n\nIn the cited commit, bond-\u003eipsec_lock is added to protect ipsec_list,\nhence xdo_dev_state_add and xdo_dev_state_delete are called inside\nthis lock. As ipsec_lock is a spin lock and such xfrmdev ops may sleep,\n\"scheduling while atomic\" will be triggered when changing bond\u0027s\nactive slave.\n\n[  101.055189] BUG: scheduling while atomic: bash/902/0x00000200\n[  101.055726] Modules linked in:\n[  101.058211] CPU: 3 PID: 902 Comm: bash Not tainted 6.9.0-rc4+ #1\n[  101.058760] Hardware name:\n[  101.059434] Call Trace:\n[  101.059436]  \u003cTASK\u003e\n[  101.060873]  dump_stack_lvl+0x51/0x60\n[  101.061275]  __schedule_bug+0x4e/0x60\n[  101.061682]  __schedule+0x612/0x7c0\n[  101.062078]  ? __mod_timer+0x25c/0x370\n[  101.062486]  schedule+0x25/0xd0\n[  101.062845]  schedule_timeout+0x77/0xf0\n[  101.063265]  ? asm_common_interrupt+0x22/0x40\n[  101.063724]  ? __bpf_trace_itimer_state+0x10/0x10\n[  101.064215]  __wait_for_common+0x87/0x190\n[  101.064648]  ? usleep_range_state+0x90/0x90\n[  101.065091]  cmd_exec+0x437/0xb20 [mlx5_core]\n[  101.065569]  mlx5_cmd_do+0x1e/0x40 [mlx5_core]\n[  101.066051]  mlx5_cmd_exec+0x18/0x30 [mlx5_core]\n[  101.066552]  mlx5_crypto_create_dek_key+0xea/0x120 [mlx5_core]\n[  101.067163]  ? bonding_sysfs_store_option+0x4d/0x80 [bonding]\n[  101.067738]  ? kmalloc_trace+0x4d/0x350\n[  101.068156]  mlx5_ipsec_create_sa_ctx+0x33/0x100 [mlx5_core]\n[  101.068747]  mlx5e_xfrm_add_state+0x47b/0xaa0 [mlx5_core]\n[  101.069312]  bond_change_active_slave+0x392/0x900 [bonding]\n[  101.069868]  bond_option_active_slave_set+0x1c2/0x240 [bonding]\n[  101.070454]  __bond_opt_set+0xa6/0x430 [bonding]\n[  101.070935]  __bond_opt_set_notify+0x2f/0x90 [bonding]\n[  101.071453]  bond_opt_tryset_rtnl+0x72/0xb0 [bonding]\n[  101.071965]  bonding_sysfs_store_option+0x4d/0x80 [bonding]\n[  101.072567]  kernfs_fop_write_iter+0x10c/0x1a0\n[  101.073033]  vfs_write+0x2d8/0x400\n[  101.073416]  ? alloc_fd+0x48/0x180\n[  101.073798]  ksys_write+0x5f/0xe0\n[  101.074175]  do_syscall_64+0x52/0x110\n[  101.074576]  entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nAs bond_ipsec_add_sa_all and bond_ipsec_del_sa_all are only called\nfrom bond_change_active_slave, which requires holding the RTNL lock.\nAnd bond_ipsec_add_sa and bond_ipsec_del_sa are xfrm state\nxdo_dev_state_add and xdo_dev_state_delete APIs, which are in user\ncontext. So ipsec_lock doesn\u0027t have to be spin lock, change it to\nmutex, and thus the above issue can be resolved.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46678",
          "url": "https://www.suse.com/security/cve/CVE-2024-46678"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230550 for CVE-2024-46678",
          "url": "https://bugzilla.suse.com/1230550"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46678"
    },
    {
      "cve": "CVE-2024-46716",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46716"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor\n\nRemove list_del call in msgdma_chan_desc_cleanup, this should be the role\nof msgdma_free_descriptor. In consequence replace list_add_tail with\nlist_move_tail in msgdma_free_descriptor.\n\nThis fixes the path:\n   msgdma_free_chan_resources -\u003e msgdma_free_descriptors -\u003e\n   msgdma_free_desc_list -\u003e msgdma_free_descriptor\n\nwhich does not correctly free the descriptors as first nodes were not\nremoved from the list.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46716",
          "url": "https://www.suse.com/security/cve/CVE-2024-46716"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230715 for CVE-2024-46716",
          "url": "https://bugzilla.suse.com/1230715"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-46716"
    },
    {
      "cve": "CVE-2024-46719",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46719"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Fix null pointer dereference in trace\n\nucsi_register_altmode checks IS_ERR for the alt pointer and treats\nNULL as valid. When CONFIG_TYPEC_DP_ALTMODE is not enabled,\nucsi_register_displayport returns NULL which causes a NULL pointer\ndereference in trace. Rather than return NULL, call\ntypec_port_register_altmode to register DisplayPort alternate mode\nas a non-controllable mode when CONFIG_TYPEC_DP_ALTMODE is not enabled.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46719",
          "url": "https://www.suse.com/security/cve/CVE-2024-46719"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230722 for CVE-2024-46719",
          "url": "https://bugzilla.suse.com/1230722"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46719"
    },
    {
      "cve": "CVE-2024-46754",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46754"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Remove tst_run from lwt_seg6local_prog_ops.\n\nThe syzbot reported that the lwt_seg6 related BPF ops can be invoked\nvia bpf_test_run() without without entering input_action_end_bpf()\nfirst.\n\nMartin KaFai Lau said that self test for BPF_PROG_TYPE_LWT_SEG6LOCAL\nprobably didn\u0027t work since it was introduced in commit 04d4b274e2a\n(\"ipv6: sr: Add seg6local action End.BPF\"). The reason is that the\nper-CPU variable seg6_bpf_srh_states::srh is never assigned in the self\ntest case but each BPF function expects it.\n\nRemove test_run for BPF_PROG_TYPE_LWT_SEG6LOCAL.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46754",
          "url": "https://www.suse.com/security/cve/CVE-2024-46754"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230801 for CVE-2024-46754",
          "url": "https://bugzilla.suse.com/1230801"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46754"
    },
    {
      "cve": "CVE-2024-46770",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46770"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Add netif_device_attach/detach into PF reset flow\n\nEthtool callbacks can be executed while reset is in progress and try to\naccess deleted resources, e.g. getting coalesce settings can result in a\nNULL pointer dereference seen below.\n\nReproduction steps:\nOnce the driver is fully initialized, trigger reset:\n\t# echo 1 \u003e /sys/class/net/\u003cinterface\u003e/device/reset\nwhen reset is in progress try to get coalesce settings using ethtool:\n\t# ethtool -c \u003cinterface\u003e\n\nBUG: kernel NULL pointer dereference, address: 0000000000000020\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] PREEMPT SMP PTI\nCPU: 11 PID: 19713 Comm: ethtool Tainted: G S                 6.10.0-rc7+ #7\nRIP: 0010:ice_get_q_coalesce+0x2e/0xa0 [ice]\nRSP: 0018:ffffbab1e9bcf6a8 EFLAGS: 00010206\nRAX: 000000000000000c RBX: ffff94512305b028 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: ffff9451c3f2e588 RDI: ffff9451c3f2e588\nRBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000\nR10: ffff9451c3f2e580 R11: 000000000000001f R12: ffff945121fa9000\nR13: ffffbab1e9bcf760 R14: 0000000000000013 R15: ffffffff9e65dd40\nFS:  00007faee5fbe740(0000) GS:ffff94546fd80000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000020 CR3: 0000000106c2e005 CR4: 00000000001706f0\nCall Trace:\n\u003cTASK\u003e\nice_get_coalesce+0x17/0x30 [ice]\ncoalesce_prepare_data+0x61/0x80\nethnl_default_doit+0xde/0x340\ngenl_family_rcv_msg_doit+0xf2/0x150\ngenl_rcv_msg+0x1b3/0x2c0\nnetlink_rcv_skb+0x5b/0x110\ngenl_rcv+0x28/0x40\nnetlink_unicast+0x19c/0x290\nnetlink_sendmsg+0x222/0x490\n__sys_sendto+0x1df/0x1f0\n__x64_sys_sendto+0x24/0x30\ndo_syscall_64+0x82/0x160\nentry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x7faee60d8e27\n\nCalling netif_device_detach() before reset makes the net core not call\nthe driver when ethtool command is issued, the attempt to execute an\nethtool command during reset will result in the following message:\n\n    netlink error: No such device\n\ninstead of NULL pointer dereference. Once reset is done and\nice_rebuild() is executing, the netif_device_attach() is called to allow\nfor ethtool operations to occur again in a safe manner.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46770",
          "url": "https://www.suse.com/security/cve/CVE-2024-46770"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230763 for CVE-2024-46770",
          "url": "https://bugzilla.suse.com/1230763"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46770"
    },
    {
      "cve": "CVE-2024-46775",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46775"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Validate function returns\n\n[WHAT \u0026 HOW]\nFunction return values must be checked before data can be used\nin subsequent functions.\n\nThis fixes 4 CHECKED_RETURN issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46775",
          "url": "https://www.suse.com/security/cve/CVE-2024-46775"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230774 for CVE-2024-46775",
          "url": "https://bugzilla.suse.com/1230774"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46775"
    },
    {
      "cve": "CVE-2024-46777",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46777"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nudf: Avoid excessive partition lengths\n\nAvoid mounting filesystems where the partition would overflow the\n32-bits used for block number. Also refuse to mount filesystems where\nthe partition length is so large we cannot safely index bits in a\nblock bitmap.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46777",
          "url": "https://www.suse.com/security/cve/CVE-2024-46777"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230773 for CVE-2024-46777",
          "url": "https://bugzilla.suse.com/1230773"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46777"
    },
    {
      "cve": "CVE-2024-46809",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46809"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check BIOS images before it is used\n\nBIOS images may fail to load and null checks are added before they are\nused.\n\nThis fixes 6 NULL_RETURNS issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46809",
          "url": "https://www.suse.com/security/cve/CVE-2024-46809"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231148 for CVE-2024-46809",
          "url": "https://bugzilla.suse.com/1231148"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46809"
    },
    {
      "cve": "CVE-2024-46811",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46811"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box\n\n[Why]\nCoverity reports OVERRUN warning. soc.num_states could\nbe 40. But array range of bw_params-\u003eclk_table.entries is 8.\n\n[How]\nAssert if soc.num_states greater than 8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46811",
          "url": "https://www.suse.com/security/cve/CVE-2024-46811"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231179 for CVE-2024-46811",
          "url": "https://bugzilla.suse.com/1231179"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46811"
    },
    {
      "cve": "CVE-2024-46813",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46813"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check link_index before accessing dc-\u003elinks[]\n\n[WHY \u0026 HOW]\ndc-\u003elinks[] has max size of MAX_LINKS and NULL is return when trying to\naccess with out-of-bound index.\n\nThis fixes 3 OVERRUN and 1 RESOURCE_LEAK issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46813",
          "url": "https://www.suse.com/security/cve/CVE-2024-46813"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231191 for CVE-2024-46813",
          "url": "https://bugzilla.suse.com/1231191"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231192 for CVE-2024-46813",
          "url": "https://bugzilla.suse.com/1231192"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-46813"
    },
    {
      "cve": "CVE-2024-46814",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46814"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check msg_id before processing transcation\n\n[WHY \u0026 HOW]\nHDCP_MESSAGE_ID_INVALID (-1) is not a valid msg_id nor is it a valid\narray index, and it needs checking before used.\n\nThis fixes 4 OVERRUN issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46814",
          "url": "https://www.suse.com/security/cve/CVE-2024-46814"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231193 for CVE-2024-46814",
          "url": "https://bugzilla.suse.com/1231193"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231194 for CVE-2024-46814",
          "url": "https://bugzilla.suse.com/1231194"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-46814"
    },
    {
      "cve": "CVE-2024-46815",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46815"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check num_valid_sets before accessing reader_wm_sets[]\n\n[WHY \u0026 HOW]\nnum_valid_sets needs to be checked to avoid a negative index when\naccessing reader_wm_sets[num_valid_sets - 1].\n\nThis fixes an OVERRUN issue reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46815",
          "url": "https://www.suse.com/security/cve/CVE-2024-46815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231195 for CVE-2024-46815",
          "url": "https://bugzilla.suse.com/1231195"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231196 for CVE-2024-46815",
          "url": "https://bugzilla.suse.com/1231196"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-46815"
    },
    {
      "cve": "CVE-2024-46816",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46816"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links\n\n[Why]\nCoverity report OVERRUN warning. There are\nonly max_links elements within dc-\u003elinks. link\ncount could up to AMDGPU_DM_MAX_DISPLAY_INDEX 31.\n\n[How]\nMake sure link count less than max_links.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46816",
          "url": "https://www.suse.com/security/cve/CVE-2024-46816"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231197 for CVE-2024-46816",
          "url": "https://bugzilla.suse.com/1231197"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231198 for CVE-2024-46816",
          "url": "https://bugzilla.suse.com/1231198"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-46816"
    },
    {
      "cve": "CVE-2024-46817",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46817"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6\n\n[Why]\nCoverity reports OVERRUN warning. Should abort amdgpu_dm\ninitialize.\n\n[How]\nReturn failure to amdgpu_dm_init.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46817",
          "url": "https://www.suse.com/security/cve/CVE-2024-46817"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231200 for CVE-2024-46817",
          "url": "https://bugzilla.suse.com/1231200"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231201 for CVE-2024-46817",
          "url": "https://bugzilla.suse.com/1231201"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-46817"
    },
    {
      "cve": "CVE-2024-46818",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46818"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check gpio_id before used as array index\n\n[WHY \u0026 HOW]\nGPIO_ID_UNKNOWN (-1) is not a valid value for array index and therefore\nshould be checked in advance.\n\nThis fixes 5 OVERRUN issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46818",
          "url": "https://www.suse.com/security/cve/CVE-2024-46818"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231203 for CVE-2024-46818",
          "url": "https://bugzilla.suse.com/1231203"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231204 for CVE-2024-46818",
          "url": "https://bugzilla.suse.com/1231204"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-46818"
    },
    {
      "cve": "CVE-2024-46826",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46826"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nELF: fix kernel.randomize_va_space double read\n\nELF loader uses \"randomize_va_space\" twice. It is sysctl and can change\nat any moment, so 2 loads could see 2 different values in theory with\nunpredictable consequences.\n\nIssue exactly one load for consistent value across one exec.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46826",
          "url": "https://www.suse.com/security/cve/CVE-2024-46826"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231115 for CVE-2024-46826",
          "url": "https://bugzilla.suse.com/1231115"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46826"
    },
    {
      "cve": "CVE-2024-46828",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46828"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched: sch_cake: fix bulk flow accounting logic for host fairness\n\nIn sch_cake, we keep track of the count of active bulk flows per host,\nwhen running in dst/src host fairness mode, which is used as the\nround-robin weight when iterating through flows. The count of active\nbulk flows is updated whenever a flow changes state.\n\nThis has a peculiar interaction with the hash collision handling: when a\nhash collision occurs (after the set-associative hashing), the state of\nthe hash bucket is simply updated to match the new packet that collided,\nand if host fairness is enabled, that also means assigning new per-host\nstate to the flow. For this reason, the bulk flow counters of the\nhost(s) assigned to the flow are decremented, before new state is\nassigned (and the counters, which may not belong to the same host\nanymore, are incremented again).\n\nBack when this code was introduced, the host fairness mode was always\nenabled, so the decrement was unconditional. When the configuration\nflags were introduced the *increment* was made conditional, but\nthe *decrement* was not. Which of course can lead to a spurious\ndecrement (and associated wrap-around to U16_MAX).\n\nAFAICT, when host fairness is disabled, the decrement and wrap-around\nhappens as soon as a hash collision occurs (which is not that common in\nitself, due to the set-associative hashing). However, in most cases this\nis harmless, as the value is only used when host fairness mode is\nenabled. So in order to trigger an array overflow, sch_cake has to first\nbe configured with host fairness disabled, and while running in this\nmode, a hash collision has to occur to cause the overflow. Then, the\nqdisc has to be reconfigured to enable host fairness, which leads to the\narray out-of-bounds because the wrapped-around value is retained and\nused as an array index. It seems that syzbot managed to trigger this,\nwhich is quite impressive in its own right.\n\nThis patch fixes the issue by introducing the same conditional check on\ndecrement as is used on increment.\n\nThe original bug predates the upstreaming of cake, but the commit listed\nin the Fixes tag touched that code, meaning that this patch won\u0027t apply\nbefore that.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46828",
          "url": "https://www.suse.com/security/cve/CVE-2024-46828"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231114 for CVE-2024-46828",
          "url": "https://bugzilla.suse.com/1231114"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46828"
    },
    {
      "cve": "CVE-2024-46834",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46834"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: fail closed if we can\u0027t get max channel used in indirection tables\n\nCommit 0d1b7d6c9274 (\"bnxt: fix crashes when reducing ring count with\nactive RSS contexts\") proves that allowing indirection table to contain\nchannels with out of bounds IDs may lead to crashes. Currently the\nmax channel check in the core gets skipped if driver can\u0027t fetch\nthe indirection table or when we can\u0027t allocate memory.\n\nBoth of those conditions should be extremely rare but if they do\nhappen we should try to be safe and fail the channel change.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46834",
          "url": "https://www.suse.com/security/cve/CVE-2024-46834"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231096 for CVE-2024-46834",
          "url": "https://bugzilla.suse.com/1231096"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46834"
    },
    {
      "cve": "CVE-2024-46840",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46840"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: clean up our handling of refs == 0 in snapshot delete\n\nIn reada we BUG_ON(refs == 0), which could be unkind since we aren\u0027t\nholding a lock on the extent leaf and thus could get a transient\nincorrect answer.  In walk_down_proc we also BUG_ON(refs == 0), which\ncould happen if we have extent tree corruption.  Change that to return\n-EUCLEAN.  In do_walk_down() we catch this case and handle it correctly,\nhowever we return -EIO, which -EUCLEAN is a more appropriate error code.\nFinally in walk_up_proc we have the same BUG_ON(refs == 0), so convert\nthat to proper error handling.  Also adjust the error message so we can\nactually do something with the information.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46840",
          "url": "https://www.suse.com/security/cve/CVE-2024-46840"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231105 for CVE-2024-46840",
          "url": "https://bugzilla.suse.com/1231105"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46840"
    },
    {
      "cve": "CVE-2024-46841",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46841"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc()\n\nWe handle errors here properly, ENOMEM isn\u0027t fatal, return the error.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46841",
          "url": "https://www.suse.com/security/cve/CVE-2024-46841"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231094 for CVE-2024-46841",
          "url": "https://bugzilla.suse.com/1231094"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46841"
    },
    {
      "cve": "CVE-2024-46848",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46848"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/intel: Limit the period on Haswell\n\nRunning the ltp test cve-2015-3290 concurrently reports the following\nwarnings.\n\nperfevents: irq loop stuck!\n  WARNING: CPU: 31 PID: 32438 at arch/x86/events/intel/core.c:3174\n  intel_pmu_handle_irq+0x285/0x370\n  Call Trace:\n   \u003cNMI\u003e\n   ? __warn+0xa4/0x220\n   ? intel_pmu_handle_irq+0x285/0x370\n   ? __report_bug+0x123/0x130\n   ? intel_pmu_handle_irq+0x285/0x370\n   ? __report_bug+0x123/0x130\n   ? intel_pmu_handle_irq+0x285/0x370\n   ? report_bug+0x3e/0xa0\n   ? handle_bug+0x3c/0x70\n   ? exc_invalid_op+0x18/0x50\n   ? asm_exc_invalid_op+0x1a/0x20\n   ? irq_work_claim+0x1e/0x40\n   ? intel_pmu_handle_irq+0x285/0x370\n   perf_event_nmi_handler+0x3d/0x60\n   nmi_handle+0x104/0x330\n\nThanks to Thomas Gleixner\u0027s analysis, the issue is caused by the low\ninitial period (1) of the frequency estimation algorithm, which triggers\nthe defects of the HW, specifically erratum HSW11 and HSW143. (For the\ndetails, please refer https://lore.kernel.org/lkml/87plq9l5d2.ffs@tglx/)\n\nThe HSW11 requires a period larger than 100 for the INST_RETIRED.ALL\nevent, but the initial period in the freq mode is 1. The erratum is the\nsame as the BDM11, which has been supported in the kernel. A minimum\nperiod of 128 is enforced as well on HSW.\n\nHSW143 is regarding that the fixed counter 1 may overcount 32 with the\nHyper-Threading is enabled. However, based on the test, the hardware\nhas more issues than it tells. Besides the fixed counter 1, the message\n\u0027interrupt took too long\u0027 can be observed on any counter which was armed\nwith a period \u003c 32 and two events expired in the same NMI. A minimum\nperiod of 32 is enforced for the rest of the events.\nThe recommended workaround code of the HSW143 is not implemented.\nBecause it only addresses the issue for the fixed counter. It brings\nextra overhead through extra MSR writing. No related overcounting issue\nhas been reported so far.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46848",
          "url": "https://www.suse.com/security/cve/CVE-2024-46848"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231072 for CVE-2024-46848",
          "url": "https://bugzilla.suse.com/1231072"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46848"
    },
    {
      "cve": "CVE-2024-46849",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46849"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: meson: axg-card: fix \u0027use-after-free\u0027\n\nBuffer \u0027card-\u003edai_link\u0027 is reallocated in \u0027meson_card_reallocate_links()\u0027,\nso move \u0027pad\u0027 pointer initialization after this function when memory is\nalready reallocated.\n\nKasan bug report:\n\n==================================================================\nBUG: KASAN: slab-use-after-free in axg_card_add_link+0x76c/0x9bc\nRead of size 8 at addr ffff000000e8b260 by task modprobe/356\n\nCPU: 0 PID: 356 Comm: modprobe Tainted: G O 6.9.12-sdkernel #1\nCall trace:\n dump_backtrace+0x94/0xec\n show_stack+0x18/0x24\n dump_stack_lvl+0x78/0x90\n print_report+0xfc/0x5c0\n kasan_report+0xb8/0xfc\n __asan_load8+0x9c/0xb8\n axg_card_add_link+0x76c/0x9bc [snd_soc_meson_axg_sound_card]\n meson_card_probe+0x344/0x3b8 [snd_soc_meson_card_utils]\n platform_probe+0x8c/0xf4\n really_probe+0x110/0x39c\n __driver_probe_device+0xb8/0x18c\n driver_probe_device+0x108/0x1d8\n __driver_attach+0xd0/0x25c\n bus_for_each_dev+0xe0/0x154\n driver_attach+0x34/0x44\n bus_add_driver+0x134/0x294\n driver_register+0xa8/0x1e8\n __platform_driver_register+0x44/0x54\n axg_card_pdrv_init+0x20/0x1000 [snd_soc_meson_axg_sound_card]\n do_one_initcall+0xdc/0x25c\n do_init_module+0x10c/0x334\n load_module+0x24c4/0x26cc\n init_module_from_file+0xd4/0x128\n __arm64_sys_finit_module+0x1f4/0x41c\n invoke_syscall+0x60/0x188\n el0_svc_common.constprop.0+0x78/0x13c\n do_el0_svc+0x30/0x40\n el0_svc+0x38/0x78\n el0t_64_sync_handler+0x100/0x12c\n el0t_64_sync+0x190/0x194",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46849",
          "url": "https://www.suse.com/security/cve/CVE-2024-46849"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231073 for CVE-2024-46849",
          "url": "https://bugzilla.suse.com/1231073"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231256 for CVE-2024-46849",
          "url": "https://bugzilla.suse.com/1231256"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46849"
    },
    {
      "cve": "CVE-2024-46854",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46854"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dpaa: Pad packets to ETH_ZLEN\n\nWhen sending packets under 60 bytes, up to three bytes of the buffer\nfollowing the data may be leaked. Avoid this by extending all packets to\nETH_ZLEN, ensuring nothing is leaked in the padding. This bug can be\nreproduced by running\n\n\t$ ping -s 11 destination",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46854",
          "url": "https://www.suse.com/security/cve/CVE-2024-46854"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231084 for CVE-2024-46854",
          "url": "https://bugzilla.suse.com/1231084"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46854"
    },
    {
      "cve": "CVE-2024-46855",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46855"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_socket: fix sk refcount leaks\n\nWe must put \u0027sk\u0027 reference before returning.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46855",
          "url": "https://www.suse.com/security/cve/CVE-2024-46855"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231085 for CVE-2024-46855",
          "url": "https://bugzilla.suse.com/1231085"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46855"
    },
    {
      "cve": "CVE-2024-46857",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-46857"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix bridge mode operations when there are no VFs\n\nCurrently, trying to set the bridge mode attribute when numvfs=0 leads to a\ncrash:\n\nbridge link set dev eth2 hwmode vepa\n\n[  168.967392] BUG: kernel NULL pointer dereference, address: 0000000000000030\n[...]\n[  168.969989] RIP: 0010:mlx5_add_flow_rules+0x1f/0x300 [mlx5_core]\n[...]\n[  168.976037] Call Trace:\n[  168.976188]  \u003cTASK\u003e\n[  168.978620]  _mlx5_eswitch_set_vepa_locked+0x113/0x230 [mlx5_core]\n[  168.979074]  mlx5_eswitch_set_vepa+0x7f/0xa0 [mlx5_core]\n[  168.979471]  rtnl_bridge_setlink+0xe9/0x1f0\n[  168.979714]  rtnetlink_rcv_msg+0x159/0x400\n[  168.980451]  netlink_rcv_skb+0x54/0x100\n[  168.980675]  netlink_unicast+0x241/0x360\n[  168.980918]  netlink_sendmsg+0x1f6/0x430\n[  168.981162]  ____sys_sendmsg+0x3bb/0x3f0\n[  168.982155]  ___sys_sendmsg+0x88/0xd0\n[  168.985036]  __sys_sendmsg+0x59/0xa0\n[  168.985477]  do_syscall_64+0x79/0x150\n[  168.987273]  entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[  168.987773] RIP: 0033:0x7f8f7950f917\n\n(esw-\u003efdb_table.legacy.vepa_fdb is null)\n\nThe bridge mode is only relevant when there are multiple functions per\nport. Therefore, prevent setting and getting this setting when there are no\nVFs.\n\nNote that after this change, there are no settings to change on the PF\ninterface using `bridge link` when there are no VFs, so the interface no\nlonger appears in the `bridge link` output.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-46857",
          "url": "https://www.suse.com/security/cve/CVE-2024-46857"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231087 for CVE-2024-46857",
          "url": "https://bugzilla.suse.com/1231087"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-46857"
    },
    {
      "cve": "CVE-2024-47660",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47660"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsnotify: clear PARENT_WATCHED flags lazily\n\nIn some setups directories can have many (usually negative) dentries.\nHence __fsnotify_update_child_dentry_flags() function can take a\nsignificant amount of time. Since the bulk of this function happens\nunder inode-\u003ei_lock this causes a significant contention on the lock\nwhen we remove the watch from the directory as the\n__fsnotify_update_child_dentry_flags() call from fsnotify_recalc_mask()\nraces with __fsnotify_update_child_dentry_flags() calls from\n__fsnotify_parent() happening on children. This can lead upto softlockup\nreports reported by users.\n\nFix the problem by calling fsnotify_update_children_dentry_flags() to\nset PARENT_WATCHED flags only when parent starts watching children.\n\nWhen parent stops watching children, clear false positive PARENT_WATCHED\nflags lazily in __fsnotify_parent() for each accessed child.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47660",
          "url": "https://www.suse.com/security/cve/CVE-2024-47660"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231439 for CVE-2024-47660",
          "url": "https://bugzilla.suse.com/1231439"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.5,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-47660"
    },
    {
      "cve": "CVE-2024-47661",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47661"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Avoid overflow from uint32_t to uint8_t\n\n[WHAT \u0026 HOW]\ndmub_rb_cmd\u0027s ramping_boundary has size of uint8_t and it is assigned\n0xFFFF. Fix it by changing it to uint8_t with value of 0xFF.\n\nThis fixes 2 INTEGER_OVERFLOW issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47661",
          "url": "https://www.suse.com/security/cve/CVE-2024-47661"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231496 for CVE-2024-47661",
          "url": "https://bugzilla.suse.com/1231496"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 0,
            "baseSeverity": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-47661"
    },
    {
      "cve": "CVE-2024-47664",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47664"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware\n\nIf the value of max_speed_hz is 0, it may cause a division by zero\nerror in hisi_calc_effective_speed().\nThe value of max_speed_hz is provided by firmware.\nFirmware is generally considered as a trusted domain. However, as\ndivision by zero errors can cause system failure, for defense measure,\nthe value of max_speed is validated here. So 0 is regarded as invalid\nand an error code is returned.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47664",
          "url": "https://www.suse.com/security/cve/CVE-2024-47664"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231442 for CVE-2024-47664",
          "url": "https://bugzilla.suse.com/1231442"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47664"
    },
    {
      "cve": "CVE-2024-47668",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47668"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc()\n\nIf we need to increase the tree depth, allocate a new node, and then\nrace with another thread that increased the tree depth before us, we\u0027ll\nstill have a preallocated node that might be used later.\n\nIf we then use that node for a new non-root node, it\u0027ll still have a\npointer to the old root instead of being zeroed - fix this by zeroing it\nin the cmpxchg failure path.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47668",
          "url": "https://www.suse.com/security/cve/CVE-2024-47668"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231502 for CVE-2024-47668",
          "url": "https://bugzilla.suse.com/1231502"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47668"
    },
    {
      "cve": "CVE-2024-47672",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47672"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: don\u0027t wait for tx queues if firmware is dead\n\nThere is a WARNING in iwl_trans_wait_tx_queues_empty() (that was\nrecently converted from just a message), that can be hit if we\nwait for TX queues to become empty after firmware died. Clearly,\nwe can\u0027t expect anything from the firmware after it\u0027s declared dead.\n\nDon\u0027t call iwl_trans_wait_tx_queues_empty() in this case. While it could\nbe a good idea to stop the flow earlier, the flush functions do some\nmaintenance work that is not related to the firmware, so keep that part\nof the code running even when the firmware is not running.\n\n[edit commit message]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47672",
          "url": "https://www.suse.com/security/cve/CVE-2024-47672"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231540 for CVE-2024-47672",
          "url": "https://bugzilla.suse.com/1231540"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-47672"
    },
    {
      "cve": "CVE-2024-47673",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47673"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: pause TCM when the firmware is stopped\n\nNot doing so will make us send a host command to the transport while the\nfirmware is not alive, which will trigger a WARNING.\n\nbad state = 0\nWARNING: CPU: 2 PID: 17434 at drivers/net/wireless/intel/iwlwifi/iwl-trans.c:115 iwl_trans_send_cmd+0x1cb/0x1e0 [iwlwifi]\nRIP: 0010:iwl_trans_send_cmd+0x1cb/0x1e0 [iwlwifi]\nCall Trace:\n \u003cTASK\u003e\n iwl_mvm_send_cmd+0x40/0xc0 [iwlmvm]\n iwl_mvm_config_scan+0x198/0x260 [iwlmvm]\n iwl_mvm_recalc_tcm+0x730/0x11d0 [iwlmvm]\n iwl_mvm_tcm_work+0x1d/0x30 [iwlmvm]\n process_one_work+0x29e/0x640\n worker_thread+0x2df/0x690\n ? rescuer_thread+0x540/0x540\n kthread+0x192/0x1e0\n ? set_kthread_struct+0x90/0x90\n ret_from_fork+0x22/0x30",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47673",
          "url": "https://www.suse.com/security/cve/CVE-2024-47673"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231539 for CVE-2024-47673",
          "url": "https://bugzilla.suse.com/1231539"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-47673"
    },
    {
      "cve": "CVE-2024-47674",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47674"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: avoid leaving partial pfn mappings around in error case\n\nAs Jann points out, PFN mappings are special, because unlike normal\nmemory mappings, there is no lifetime information associated with the\nmapping - it is just a raw mapping of PFNs with no reference counting of\na \u0027struct page\u0027.\n\nThat\u0027s all very much intentional, but it does mean that it\u0027s easy to\nmess up the cleanup in case of errors.  Yes, a failed mmap() will always\neventually clean up any partial mappings, but without any explicit\nlifetime in the page table mapping itself, it\u0027s very easy to do the\nerror handling in the wrong order.\n\nIn particular, it\u0027s easy to mistakenly free the physical backing store\nbefore the page tables are actually cleaned up and (temporarily) have\nstale dangling PTE entries.\n\nTo make this situation less error-prone, just make sure that any partial\npfn mapping is torn down early, before any other error handling.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47674",
          "url": "https://www.suse.com/security/cve/CVE-2024-47674"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231673 for CVE-2024-47674",
          "url": "https://bugzilla.suse.com/1231673"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231676 for CVE-2024-47674",
          "url": "https://bugzilla.suse.com/1231676"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-47674"
    },
    {
      "cve": "CVE-2024-47684",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47684"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: check skb is non-NULL in tcp_rto_delta_us()\n\nWe have some machines running stock Ubuntu 20.04.6 which is their 5.4.0-174-generic\nkernel that are running ceph and recently hit a null ptr dereference in\ntcp_rearm_rto(). Initially hitting it from the TLP path, but then later we also\nsaw it getting hit from the RACK case as well. Here are examples of the oops\nmessages we saw in each of those cases:\n\nJul 26 15:05:02 rx [11061395.780353] BUG: kernel NULL pointer dereference, address: 0000000000000020\nJul 26 15:05:02 rx [11061395.787572] #PF: supervisor read access in kernel mode\nJul 26 15:05:02 rx [11061395.792971] #PF: error_code(0x0000) - not-present page\nJul 26 15:05:02 rx [11061395.798362] PGD 0 P4D 0\nJul 26 15:05:02 rx [11061395.801164] Oops: 0000 [#1] SMP NOPTI\nJul 26 15:05:02 rx [11061395.805091] CPU: 0 PID: 9180 Comm: msgr-worker-1 Tainted: G W 5.4.0-174-generic #193-Ubuntu\nJul 26 15:05:02 rx [11061395.814996] Hardware name: Supermicro SMC 2x26 os-gen8 64C NVME-Y 256G/H12SSW-NTR, BIOS 2.5.V1.2U.NVMe.UEFI 05/09/2023\nJul 26 15:05:02 rx [11061395.825952] RIP: 0010:tcp_rearm_rto+0xe4/0x160\nJul 26 15:05:02 rx [11061395.830656] Code: 87 ca 04 00 00 00 5b 41 5c 41 5d 5d c3 c3 49 8b bc 24 40 06 00 00 eb 8d 48 bb cf f7 53 e3 a5 9b c4 20 4c 89 ef e8 0c fe 0e 00 \u003c48\u003e 8b 78 20 48 c1 ef 03 48 89 f8 41 8b bc 24 80 04 00 00 48 f7 e3\nJul 26 15:05:02 rx [11061395.849665] RSP: 0018:ffffb75d40003e08 EFLAGS: 00010246\nJul 26 15:05:02 rx [11061395.855149] RAX: 0000000000000000 RBX: 20c49ba5e353f7cf RCX: 0000000000000000\nJul 26 15:05:02 rx [11061395.862542] RDX: 0000000062177c30 RSI: 000000000000231c RDI: ffff9874ad283a60\nJul 26 15:05:02 rx [11061395.869933] RBP: ffffb75d40003e20 R08: 0000000000000000 R09: ffff987605e20aa8\nJul 26 15:05:02 rx [11061395.877318] R10: ffffb75d40003f00 R11: ffffb75d4460f740 R12: ffff9874ad283900\nJul 26 15:05:02 rx [11061395.884710] R13: ffff9874ad283a60 R14: ffff9874ad283980 R15: ffff9874ad283d30\nJul 26 15:05:02 rx [11061395.892095] FS: 00007f1ef4a2e700(0000) GS:ffff987605e00000(0000) knlGS:0000000000000000\nJul 26 15:05:02 rx [11061395.900438] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nJul 26 15:05:02 rx [11061395.906435] CR2: 0000000000000020 CR3: 0000003e450ba003 CR4: 0000000000760ef0\nJul 26 15:05:02 rx [11061395.913822] PKRU: 55555554\nJul 26 15:05:02 rx [11061395.916786] Call Trace:\nJul 26 15:05:02 rx [11061395.919488]\nJul 26 15:05:02 rx [11061395.921765] ? show_regs.cold+0x1a/0x1f\nJul 26 15:05:02 rx [11061395.925859] ? __die+0x90/0xd9\nJul 26 15:05:02 rx [11061395.929169] ? no_context+0x196/0x380\nJul 26 15:05:02 rx [11061395.933088] ? ip6_protocol_deliver_rcu+0x4e0/0x4e0\nJul 26 15:05:02 rx [11061395.938216] ? ip6_sublist_rcv_finish+0x3d/0x50\nJul 26 15:05:02 rx [11061395.943000] ? __bad_area_nosemaphore+0x50/0x1a0\nJul 26 15:05:02 rx [11061395.947873] ? bad_area_nosemaphore+0x16/0x20\nJul 26 15:05:02 rx [11061395.952486] ? do_user_addr_fault+0x267/0x450\nJul 26 15:05:02 rx [11061395.957104] ? ipv6_list_rcv+0x112/0x140\nJul 26 15:05:02 rx [11061395.961279] ? __do_page_fault+0x58/0x90\nJul 26 15:05:02 rx [11061395.965458] ? do_page_fault+0x2c/0xe0\nJul 26 15:05:02 rx [11061395.969465] ? page_fault+0x34/0x40\nJul 26 15:05:02 rx [11061395.973217] ? tcp_rearm_rto+0xe4/0x160\nJul 26 15:05:02 rx [11061395.977313] ? tcp_rearm_rto+0xe4/0x160\nJul 26 15:05:02 rx [11061395.981408] tcp_send_loss_probe+0x10b/0x220\nJul 26 15:05:02 rx [11061395.985937] tcp_write_timer_handler+0x1b4/0x240\nJul 26 15:05:02 rx [11061395.990809] tcp_write_timer+0x9e/0xe0\nJul 26 15:05:02 rx [11061395.994814] ? tcp_write_timer_handler+0x240/0x240\nJul 26 15:05:02 rx [11061395.999866] call_timer_fn+0x32/0x130\nJul 26 15:05:02 rx [11061396.003782] __run_timers.part.0+0x180/0x280\nJul 26 15:05:02 rx [11061396.008309] ? recalibrate_cpu_khz+0x10/0x10\nJul 26 15:05:02 rx [11061396.012841] ? native_x2apic_icr_write+0x30/0x30\nJul 26 15:05:02 rx [11061396.017718] ? lapic_next_even\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47684",
          "url": "https://www.suse.com/security/cve/CVE-2024-47684"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231987 for CVE-2024-47684",
          "url": "https://bugzilla.suse.com/1231987"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231993 for CVE-2024-47684",
          "url": "https://bugzilla.suse.com/1231993"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-47684"
    },
    {
      "cve": "CVE-2024-47685",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47685"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put()\n\nsyzbot reported that nf_reject_ip6_tcphdr_put() was possibly sending\ngarbage on the four reserved tcp bits (th-\u003eres1)\n\nUse skb_put_zero() to clear the whole TCP header,\nas done in nf_reject_ip_tcphdr_put()\n\nBUG: KMSAN: uninit-value in nf_reject_ip6_tcphdr_put+0x688/0x6c0 net/ipv6/netfilter/nf_reject_ipv6.c:255\n  nf_reject_ip6_tcphdr_put+0x688/0x6c0 net/ipv6/netfilter/nf_reject_ipv6.c:255\n  nf_send_reset6+0xd84/0x15b0 net/ipv6/netfilter/nf_reject_ipv6.c:344\n  nft_reject_inet_eval+0x3c1/0x880 net/netfilter/nft_reject_inet.c:48\n  expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n  nft_do_chain+0x438/0x22a0 net/netfilter/nf_tables_core.c:288\n  nft_do_chain_inet+0x41a/0x4f0 net/netfilter/nft_chain_filter.c:161\n  nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n  nf_hook_slow+0xf4/0x400 net/netfilter/core.c:626\n  nf_hook include/linux/netfilter.h:269 [inline]\n  NF_HOOK include/linux/netfilter.h:312 [inline]\n  ipv6_rcv+0x29b/0x390 net/ipv6/ip6_input.c:310\n  __netif_receive_skb_one_core net/core/dev.c:5661 [inline]\n  __netif_receive_skb+0x1da/0xa00 net/core/dev.c:5775\n  process_backlog+0x4ad/0xa50 net/core/dev.c:6108\n  __napi_poll+0xe7/0x980 net/core/dev.c:6772\n  napi_poll net/core/dev.c:6841 [inline]\n  net_rx_action+0xa5a/0x19b0 net/core/dev.c:6963\n  handle_softirqs+0x1ce/0x800 kernel/softirq.c:554\n  __do_softirq+0x14/0x1a kernel/softirq.c:588\n  do_softirq+0x9a/0x100 kernel/softirq.c:455\n  __local_bh_enable_ip+0x9f/0xb0 kernel/softirq.c:382\n  local_bh_enable include/linux/bottom_half.h:33 [inline]\n  rcu_read_unlock_bh include/linux/rcupdate.h:908 [inline]\n  __dev_queue_xmit+0x2692/0x5610 net/core/dev.c:4450\n  dev_queue_xmit include/linux/netdevice.h:3105 [inline]\n  neigh_resolve_output+0x9ca/0xae0 net/core/neighbour.c:1565\n  neigh_output include/net/neighbour.h:542 [inline]\n  ip6_finish_output2+0x2347/0x2ba0 net/ipv6/ip6_output.c:141\n  __ip6_finish_output net/ipv6/ip6_output.c:215 [inline]\n  ip6_finish_output+0xbb8/0x14b0 net/ipv6/ip6_output.c:226\n  NF_HOOK_COND include/linux/netfilter.h:303 [inline]\n  ip6_output+0x356/0x620 net/ipv6/ip6_output.c:247\n  dst_output include/net/dst.h:450 [inline]\n  NF_HOOK include/linux/netfilter.h:314 [inline]\n  ip6_xmit+0x1ba6/0x25d0 net/ipv6/ip6_output.c:366\n  inet6_csk_xmit+0x442/0x530 net/ipv6/inet6_connection_sock.c:135\n  __tcp_transmit_skb+0x3b07/0x4880 net/ipv4/tcp_output.c:1466\n  tcp_transmit_skb net/ipv4/tcp_output.c:1484 [inline]\n  tcp_connect+0x35b6/0x7130 net/ipv4/tcp_output.c:4143\n  tcp_v6_connect+0x1bcc/0x1e40 net/ipv6/tcp_ipv6.c:333\n  __inet_stream_connect+0x2ef/0x1730 net/ipv4/af_inet.c:679\n  inet_stream_connect+0x6a/0xd0 net/ipv4/af_inet.c:750\n  __sys_connect_file net/socket.c:2061 [inline]\n  __sys_connect+0x606/0x690 net/socket.c:2078\n  __do_sys_connect net/socket.c:2088 [inline]\n  __se_sys_connect net/socket.c:2085 [inline]\n  __x64_sys_connect+0x91/0xe0 net/socket.c:2085\n  x64_sys_call+0x27a5/0x3ba0 arch/x86/include/generated/asm/syscalls_64.h:43\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcd/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was stored to memory at:\n  nf_reject_ip6_tcphdr_put+0x60c/0x6c0 net/ipv6/netfilter/nf_reject_ipv6.c:249\n  nf_send_reset6+0xd84/0x15b0 net/ipv6/netfilter/nf_reject_ipv6.c:344\n  nft_reject_inet_eval+0x3c1/0x880 net/netfilter/nft_reject_inet.c:48\n  expr_call_ops_eval net/netfilter/nf_tables_core.c:240 [inline]\n  nft_do_chain+0x438/0x22a0 net/netfilter/nf_tables_core.c:288\n  nft_do_chain_inet+0x41a/0x4f0 net/netfilter/nft_chain_filter.c:161\n  nf_hook_entry_hookfn include/linux/netfilter.h:154 [inline]\n  nf_hook_slow+0xf4/0x400 net/netfilter/core.c:626\n  nf_hook include/linux/netfilter.h:269 [inline]\n  NF_HOOK include/linux/netfilter.h:312 [inline]\n  ipv6_rcv+0x29b/0x390 net/ipv6/ip6_input.c:310\n  __netif_receive_skb_one_core\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47685",
          "url": "https://www.suse.com/security/cve/CVE-2024-47685"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231998 for CVE-2024-47685",
          "url": "https://bugzilla.suse.com/1231998"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47685"
    },
    {
      "cve": "CVE-2024-47692",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47692"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: return -EINVAL when namelen is 0\n\nWhen we have a corrupted main.sqlite in /var/lib/nfs/nfsdcld/, it may\nresult in namelen being 0, which will cause memdup_user() to return\nZERO_SIZE_PTR.\nWhen we access the name.data that has been assigned the value of\nZERO_SIZE_PTR in nfs4_client_to_reclaim(), null pointer dereference is\ntriggered.\n\n[ T1205] ==================================================================\n[ T1205] BUG: KASAN: null-ptr-deref in nfs4_client_to_reclaim+0xe9/0x260\n[ T1205] Read of size 1 at addr 0000000000000010 by task nfsdcld/1205\n[ T1205]\n[ T1205] CPU: 11 PID: 1205 Comm: nfsdcld Not tainted 5.10.0-00003-g2c1423731b8d #406\n[ T1205] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS ?-20190727_073836-buildvm-ppc64le-16.ppc.fedoraproject.org-3.fc31 04/01/2014\n[ T1205] Call Trace:\n[ T1205]  dump_stack+0x9a/0xd0\n[ T1205]  ? nfs4_client_to_reclaim+0xe9/0x260\n[ T1205]  __kasan_report.cold+0x34/0x84\n[ T1205]  ? nfs4_client_to_reclaim+0xe9/0x260\n[ T1205]  kasan_report+0x3a/0x50\n[ T1205]  nfs4_client_to_reclaim+0xe9/0x260\n[ T1205]  ? nfsd4_release_lockowner+0x410/0x410\n[ T1205]  cld_pipe_downcall+0x5ca/0x760\n[ T1205]  ? nfsd4_cld_tracking_exit+0x1d0/0x1d0\n[ T1205]  ? down_write_killable_nested+0x170/0x170\n[ T1205]  ? avc_policy_seqno+0x28/0x40\n[ T1205]  ? selinux_file_permission+0x1b4/0x1e0\n[ T1205]  rpc_pipe_write+0x84/0xb0\n[ T1205]  vfs_write+0x143/0x520\n[ T1205]  ksys_write+0xc9/0x170\n[ T1205]  ? __ia32_sys_read+0x50/0x50\n[ T1205]  ? ktime_get_coarse_real_ts64+0xfe/0x110\n[ T1205]  ? ktime_get_coarse_real_ts64+0xa2/0x110\n[ T1205]  do_syscall_64+0x33/0x40\n[ T1205]  entry_SYSCALL_64_after_hwframe+0x67/0xd1\n[ T1205] RIP: 0033:0x7fdbdb761bc7\n[ T1205] Code: 0f 00 f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb b7 0f 1f 00 f3 0f 1e fa 64 8b 04 25 18 00 00 00 85 c0 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 514\n[ T1205] RSP: 002b:00007fff8c4b7248 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\n[ T1205] RAX: ffffffffffffffda RBX: 000000000000042b RCX: 00007fdbdb761bc7\n[ T1205] RDX: 000000000000042b RSI: 00007fff8c4b75f0 RDI: 0000000000000008\n[ T1205] RBP: 00007fdbdb761bb0 R08: 0000000000000000 R09: 0000000000000001\n[ T1205] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000042b\n[ T1205] R13: 0000000000000008 R14: 00007fff8c4b75f0 R15: 0000000000000000\n[ T1205] ==================================================================\n\nFix it by checking namelen.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47692",
          "url": "https://www.suse.com/security/cve/CVE-2024-47692"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231857 for CVE-2024-47692",
          "url": "https://bugzilla.suse.com/1231857"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47692"
    },
    {
      "cve": "CVE-2024-47704",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47704"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check link_res-\u003ehpo_dp_link_enc before using it\n\n[WHAT \u0026 HOW]\nFunctions dp_enable_link_phy and dp_disable_link_phy can pass link_res\nwithout initializing hpo_dp_link_enc and it is necessary to check for\nnull before dereferencing.\n\nThis fixes 2 FORWARD_NULL issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47704",
          "url": "https://www.suse.com/security/cve/CVE-2024-47704"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231944 for CVE-2024-47704",
          "url": "https://bugzilla.suse.com/1231944"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47704"
    },
    {
      "cve": "CVE-2024-47705",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47705"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix potential invalid pointer dereference in blk_add_partition\n\nThe blk_add_partition() function initially used a single if-condition\n(IS_ERR(part)) to check for errors when adding a partition. This was\nmodified to handle the specific case of -ENXIO separately, allowing the\nfunction to proceed without logging the error in this case. However,\nthis change unintentionally left a path where md_autodetect_dev()\ncould be called without confirming that part is a valid pointer.\n\nThis commit separates the error handling logic by splitting the\ninitial if-condition, improving code readability and handling specific\nerror scenarios explicitly. The function now distinguishes the general\nerror case from -ENXIO without altering the existing behavior of\nmd_autodetect_dev() calls.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47705",
          "url": "https://www.suse.com/security/cve/CVE-2024-47705"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231872 for CVE-2024-47705",
          "url": "https://bugzilla.suse.com/1231872"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47705"
    },
    {
      "cve": "CVE-2024-47706",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47706"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock, bfq: fix possible UAF for bfqq-\u003ebic with merge chain\n\n1) initial state, three tasks:\n\n\t\tProcess 1       Process 2\tProcess 3\n\t\t (BIC1)          (BIC2)\t\t (BIC3)\n\t\t  |  \u039b            |  \u039b\t\t  |  \u039b\n\t\t  |  |            |  |\t\t  |  |\n\t\t  V  |            V  |\t\t  V  |\n\t\t  bfqq1           bfqq2\t\t  bfqq3\nprocess ref:\t   1\t\t    1\t\t    1\n\n2) bfqq1 merged to bfqq2:\n\n\t\tProcess 1       Process 2\tProcess 3\n\t\t (BIC1)          (BIC2)\t\t (BIC3)\n\t\t  |               |\t\t  |  \u039b\n\t\t  \\--------------\\|\t\t  |  |\n\t\t                  V\t\t  V  |\n\t\t  bfqq1---------\u003ebfqq2\t\t  bfqq3\nprocess ref:\t   0\t\t    2\t\t    1\n\n3) bfqq2 merged to bfqq3:\n\n\t\tProcess 1       Process 2\tProcess 3\n\t\t (BIC1)          (BIC2)\t\t (BIC3)\n\t here -\u003e \u039b                |\t\t  |\n\t\t  \\--------------\\ \\-------------\\|\n\t\t                  V\t\t  V\n\t\t  bfqq1---------\u003ebfqq2----------\u003ebfqq3\nprocess ref:\t   0\t\t    1\t\t    3\n\nIn this case, IO from Process 1 will get bfqq2 from BIC1 first, and then\nget bfqq3 through merge chain, and finially handle IO by bfqq3.\nHowerver, current code will think bfqq2 is owned by BIC1, like initial\nstate, and set bfqq2-\u003ebic to BIC1.\n\nbfq_insert_request\n-\u003e by Process 1\n bfqq = bfq_init_rq(rq)\n  bfqq = bfq_get_bfqq_handle_split\n   bfqq = bic_to_bfqq\n   -\u003e get bfqq2 from BIC1\n bfqq-\u003eref++\n rq-\u003eelv.priv[0] = bic\n rq-\u003eelv.priv[1] = bfqq\n if (bfqq_process_refs(bfqq) == 1)\n  bfqq-\u003ebic = bic\n  -\u003e record BIC1 to bfqq2\n\n  __bfq_insert_request\n   new_bfqq = bfq_setup_cooperator\n   -\u003e get bfqq3 from bfqq2-\u003enew_bfqq\n   bfqq_request_freed(bfqq)\n   new_bfqq-\u003eref++\n   rq-\u003eelv.priv[1] = new_bfqq\n   -\u003e handle IO by bfqq3\n\nFix the problem by checking bfqq is from merge chain fist. And this\nmight fix a following problem reported by our syzkaller(unreproducible):\n\n==================================================================\nBUG: KASAN: slab-use-after-free in bfq_do_early_stable_merge block/bfq-iosched.c:5692 [inline]\nBUG: KASAN: slab-use-after-free in bfq_do_or_sched_stable_merge block/bfq-iosched.c:5805 [inline]\nBUG: KASAN: slab-use-after-free in bfq_get_queue+0x25b0/0x2610 block/bfq-iosched.c:5889\nWrite of size 1 at addr ffff888123839eb8 by task kworker/0:1H/18595\n\nCPU: 0 PID: 18595 Comm: kworker/0:1H Tainted: G             L     6.6.0-07439-gba2303cacfda #6\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014\nWorkqueue: kblockd blk_mq_requeue_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x91/0xf0 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:364 [inline]\n print_report+0x10d/0x610 mm/kasan/report.c:475\n kasan_report+0x8e/0xc0 mm/kasan/report.c:588\n bfq_do_early_stable_merge block/bfq-iosched.c:5692 [inline]\n bfq_do_or_sched_stable_merge block/bfq-iosched.c:5805 [inline]\n bfq_get_queue+0x25b0/0x2610 block/bfq-iosched.c:5889\n bfq_get_bfqq_handle_split+0x169/0x5d0 block/bfq-iosched.c:6757\n bfq_init_rq block/bfq-iosched.c:6876 [inline]\n bfq_insert_request block/bfq-iosched.c:6254 [inline]\n bfq_insert_requests+0x1112/0x5cf0 block/bfq-iosched.c:6304\n blk_mq_insert_request+0x290/0x8d0 block/blk-mq.c:2593\n blk_mq_requeue_work+0x6bc/0xa70 block/blk-mq.c:1502\n process_one_work kernel/workqueue.c:2627 [inline]\n process_scheduled_works+0x432/0x13f0 kernel/workqueue.c:2700\n worker_thread+0x6f2/0x1160 kernel/workqueue.c:2781\n kthread+0x33c/0x440 kernel/kthread.c:388\n ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1b/0x30 arch/x86/entry/entry_64.S:305\n \u003c/TASK\u003e\n\nAllocated by task 20776:\n kasan_save_stack+0x20/0x40 mm/kasan/common.c:45\n kasan_set_track+0x25/0x30 mm/kasan/common.c:52\n __kasan_slab_alloc+0x87/0x90 mm/kasan/common.c:328\n kasan_slab_alloc include/linux/kasan.h:188 [inline]\n slab_post_alloc_hook mm/slab.h:763 [inline]\n slab_alloc_node mm/slub.c:3458 [inline]\n kmem_cache_alloc_node+0x1a4/0x6f0 mm/slub.c:3503\n ioc_create_icq block/blk-ioc.c:370 [inline]\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47706",
          "url": "https://www.suse.com/security/cve/CVE-2024-47706"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231942 for CVE-2024-47706",
          "url": "https://bugzilla.suse.com/1231942"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231943 for CVE-2024-47706",
          "url": "https://bugzilla.suse.com/1231943"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-47706"
    },
    {
      "cve": "CVE-2024-47707",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47707"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()\n\nBlamed commit accidentally removed a check for rt-\u003ert6i_idev being NULL,\nas spotted by syzbot:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 1 UID: 0 PID: 10998 Comm: syz-executor Not tainted 6.11.0-rc6-syzkaller-00208-g625403177711 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\n RIP: 0010:rt6_uncached_list_flush_dev net/ipv6/route.c:177 [inline]\n RIP: 0010:rt6_disable_ip+0x33e/0x7e0 net/ipv6/route.c:4914\nCode: 41 80 3c 04 00 74 0a e8 90 d0 9b f7 48 8b 7c 24 08 48 8b 07 48 89 44 24 10 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df \u003c80\u003e 3c 08 00 74 08 4c 89 f7 e8 64 d0 9b f7 48 8b 44 24 18 49 39 06\nRSP: 0018:ffffc900047374e0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: 1ffff1100fdf8f33 RCX: dffffc0000000000\nRDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88807efc78c0\nRBP: ffffc900047375d0 R08: 0000000000000003 R09: fffff520008e6e8c\nR10: dffffc0000000000 R11: fffff520008e6e8c R12: 1ffff1100fdf8f18\nR13: ffff88807efc7998 R14: 0000000000000000 R15: ffff88807efc7930\nFS:  0000000000000000(0000) GS:ffff8880b8900000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020002a80 CR3: 0000000022f62000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n  addrconf_ifdown+0x15d/0x1bd0 net/ipv6/addrconf.c:3856\n addrconf_notify+0x3cb/0x1020\n  notifier_call_chain+0x19f/0x3e0 kernel/notifier.c:93\n  call_netdevice_notifiers_extack net/core/dev.c:2032 [inline]\n  call_netdevice_notifiers net/core/dev.c:2046 [inline]\n  unregister_netdevice_many_notify+0xd81/0x1c40 net/core/dev.c:11352\n  unregister_netdevice_many net/core/dev.c:11414 [inline]\n  unregister_netdevice_queue+0x303/0x370 net/core/dev.c:11289\n  unregister_netdevice include/linux/netdevice.h:3129 [inline]\n  __tun_detach+0x6b9/0x1600 drivers/net/tun.c:685\n  tun_detach drivers/net/tun.c:701 [inline]\n  tun_chr_close+0x108/0x1b0 drivers/net/tun.c:3510\n  __fput+0x24a/0x8a0 fs/file_table.c:422\n  task_work_run+0x24f/0x310 kernel/task_work.c:228\n  exit_task_work include/linux/task_work.h:40 [inline]\n  do_exit+0xa2f/0x27f0 kernel/exit.c:882\n  do_group_exit+0x207/0x2c0 kernel/exit.c:1031\n  __do_sys_exit_group kernel/exit.c:1042 [inline]\n  __se_sys_exit_group kernel/exit.c:1040 [inline]\n  __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1040\n  x64_sys_call+0x2634/0x2640 arch/x86/include/generated/asm/syscalls_64.h:232\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f1acc77def9\nCode: Unable to access opcode bytes at 0x7f1acc77decf.\nRSP: 002b:00007ffeb26fa738 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7\nRAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1acc77def9\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043\nRBP: 00007f1acc7dd508 R08: 00007ffeb26f84d7 R09: 0000000000000003\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001\nR13: 0000000000000003 R14: 00000000ffffffff R15: 00007ffeb26fa8e0\n \u003c/TASK\u003e\nModules linked in:\n---[ end trace 0000000000000000 ]---\n RIP: 0010:rt6_uncached_list_flush_dev net/ipv6/route.c:177 [inline]\n RIP: 0010:rt6_disable_ip+0x33e/0x7e0 net/ipv6/route.c:4914\nCode: 41 80 3c 04 00 74 0a e8 90 d0 9b f7 48 8b 7c 24 08 48 8b 07 48 89 44 24 10 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df \u003c80\u003e 3c 08 00 74 08 4c 89 f7 e8 64 d0 9b f7 48 8b 44 24 18 49 39 06\nRSP: 0018:ffffc900047374e0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: 1ffff1100fdf8f33 RCX: dffffc0000000000\nRDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff88807efc78c0\nR\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47707",
          "url": "https://www.suse.com/security/cve/CVE-2024-47707"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231935 for CVE-2024-47707",
          "url": "https://bugzilla.suse.com/1231935"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47707"
    },
    {
      "cve": "CVE-2024-47710",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47710"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsock_map: Add a cond_resched() in sock_hash_free()\n\nSeveral syzbot soft lockup reports all have in common sock_hash_free()\n\nIf a map with a large number of buckets is destroyed, we need to yield\nthe cpu when needed.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47710",
          "url": "https://www.suse.com/security/cve/CVE-2024-47710"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232049 for CVE-2024-47710",
          "url": "https://bugzilla.suse.com/1232049"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.5,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-47710"
    },
    {
      "cve": "CVE-2024-47720",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47720"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the  dcn30_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for nullity at line 386, but then it\nwas being dereferenced without any nullity check at line 401. This\ncould potentially lead to a null pointer dereference error if\nset_output_gamma is indeed null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a nullity check for\nset_output_gamma before the call to set_output_gamma at line 401. If\nset_output_gamma is null, we log an error message and do not call the\nfunction.\n\nThis fix prevents a potential null pointer dereference error.\n\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:401 dcn30_set_output_transfer_func()\nerror: we previously assumed \u0027mpc-\u003efuncs-\u003eset_output_gamma\u0027 could be null (see line 386)\n\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c\n    373 bool dcn30_set_output_transfer_func(struct dc *dc,\n    374                                 struct pipe_ctx *pipe_ctx,\n    375                                 const struct dc_stream_state *stream)\n    376 {\n    377         int mpcc_id = pipe_ctx-\u003eplane_res.hubp-\u003einst;\n    378         struct mpc *mpc = pipe_ctx-\u003estream_res.opp-\u003ectx-\u003edc-\u003eres_pool-\u003empc;\n    379         const struct pwl_params *params = NULL;\n    380         bool ret = false;\n    381\n    382         /* program OGAM or 3DLUT only for the top pipe*/\n    383         if (pipe_ctx-\u003etop_pipe == NULL) {\n    384                 /*program rmu shaper and 3dlut in MPC*/\n    385                 ret = dcn30_set_mpc_shaper_3dlut(pipe_ctx, stream);\n    386                 if (ret == false \u0026\u0026 mpc-\u003efuncs-\u003eset_output_gamma) {\n                                            ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ If this is NULL\n\n    387                         if (stream-\u003eout_transfer_func.type == TF_TYPE_HWPWL)\n    388                                 params = \u0026stream-\u003eout_transfer_func.pwl;\n    389                         else if (pipe_ctx-\u003estream-\u003eout_transfer_func.type ==\n    390                                         TF_TYPE_DISTRIBUTED_POINTS \u0026\u0026\n    391                                         cm3_helper_translate_curve_to_hw_format(\n    392                                         \u0026stream-\u003eout_transfer_func,\n    393                                         \u0026mpc-\u003eblender_params, false))\n    394                                 params = \u0026mpc-\u003eblender_params;\n    395                          /* there are no ROM LUTs in OUTGAM */\n    396                         if (stream-\u003eout_transfer_func.type == TF_TYPE_PREDEFINED)\n    397                                 BREAK_TO_DEBUGGER();\n    398                 }\n    399         }\n    400\n--\u003e 401         mpc-\u003efuncs-\u003eset_output_gamma(mpc, mpcc_id, params);\n                ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ Then it will crash\n\n    402         return ret;\n    403 }",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47720",
          "url": "https://www.suse.com/security/cve/CVE-2024-47720"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232043 for CVE-2024-47720",
          "url": "https://bugzilla.suse.com/1232043"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47720"
    },
    {
      "cve": "CVE-2024-47727",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47727"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/tdx: Fix \"in-kernel MMIO\" check\n\nTDX only supports kernel-initiated MMIO operations. The handle_mmio()\nfunction checks if the #VE exception occurred in the kernel and rejects\nthe operation if it did not.\n\nHowever, userspace can deceive the kernel into performing MMIO on its\nbehalf. For example, if userspace can point a syscall to an MMIO address,\nsyscall does get_user() or put_user() on it, triggering MMIO #VE. The\nkernel will treat the #VE as in-kernel MMIO.\n\nEnsure that the target MMIO address is within the kernel before decoding\ninstruction.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47727",
          "url": "https://www.suse.com/security/cve/CVE-2024-47727"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232116 for CVE-2024-47727",
          "url": "https://bugzilla.suse.com/1232116"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47727"
    },
    {
      "cve": "CVE-2024-47730",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47730"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: hisilicon/qm - inject error before stopping queue\n\nThe master ooo cannot be completely closed when the\naccelerator core reports memory error. Therefore, the driver\nneeds to inject the qm error to close the master ooo. Currently,\nthe qm error is injected after stopping queue, memory may be\nreleased immediately after stopping queue, causing the device to\naccess the released memory. Therefore, error is injected to close master\nooo before stopping queue to ensure that the device does not access\nthe released memory.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47730",
          "url": "https://www.suse.com/security/cve/CVE-2024-47730"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232075 for CVE-2024-47730",
          "url": "https://bugzilla.suse.com/1232075"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47730"
    },
    {
      "cve": "CVE-2024-47738",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47738"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: don\u0027t use rate mask for offchannel TX either\n\nLike the commit ab9177d83c04 (\"wifi: mac80211: don\u0027t use rate mask for\nscanning\"), ignore incorrect settings to avoid no supported rate warning\nreported by syzbot.\n\nThe syzbot did bisect and found cause is commit 9df66d5b9f45 (\"cfg80211:\nfix default HE tx bitrate mask in 2G band\"), which however corrects\nbitmask of HE MCS and recognizes correctly settings of empty legacy rate\nplus HE MCS rate instead of returning -EINVAL.\n\nAs suggestions [1], follow the change of SCAN TX to consider this case of\noffchannel TX as well.\n\n[1] https://lore.kernel.org/linux-wireless/6ab2dc9c3afe753ca6fdcdd1421e7a1f47e87b84.camel@sipsolutions.net/T/#m2ac2a6d2be06a37c9c47a3d8a44b4f647ed4f024",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47738",
          "url": "https://www.suse.com/security/cve/CVE-2024-47738"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232114 for CVE-2024-47738",
          "url": "https://bugzilla.suse.com/1232114"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47738"
    },
    {
      "cve": "CVE-2024-47739",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47739"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\npadata: use integer wrap around to prevent deadlock on seq_nr overflow\n\nWhen submitting more than 2^32 padata objects to padata_do_serial, the\ncurrent sorting implementation incorrectly sorts padata objects with\noverflowed seq_nr, causing them to be placed before existing objects in\nthe reorder list. This leads to a deadlock in the serialization process\nas padata_find_next cannot match padata-\u003eseq_nr and pd-\u003eprocessed\nbecause the padata instance with overflowed seq_nr will be selected\nnext.\n\nTo fix this, we use an unsigned integer wrap around to correctly sort\npadata objects in scenarios with integer overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47739",
          "url": "https://www.suse.com/security/cve/CVE-2024-47739"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232124 for CVE-2024-47739",
          "url": "https://bugzilla.suse.com/1232124"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47739"
    },
    {
      "cve": "CVE-2024-47745",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47745"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: call the security_mmap_file() LSM hook in remap_file_pages()\n\nThe remap_file_pages syscall handler calls do_mmap() directly, which\ndoesn\u0027t contain the LSM security check. And if the process has called\npersonality(READ_IMPLIES_EXEC) before and remap_file_pages() is called for\nRW pages, this will actually result in remapping the pages to RWX,\nbypassing a W^X policy enforced by SELinux.\n\nSo we should check prot by security_mmap_file LSM hook in the\nremap_file_pages syscall handler before do_mmap() is called. Otherwise, it\npotentially permits an attacker to bypass a W^X policy enforced by\nSELinux.\n\nThe bypass is similar to CVE-2016-10044, which bypass the same thing via\nAIO and can be found in [1].\n\nThe PoC:\n\n$ cat \u003e test.c\n\nint main(void) {\n\tsize_t pagesz = sysconf(_SC_PAGE_SIZE);\n\tint mfd = syscall(SYS_memfd_create, \"test\", 0);\n\tconst char *buf = mmap(NULL, 4 * pagesz, PROT_READ | PROT_WRITE,\n\t\tMAP_SHARED, mfd, 0);\n\tunsigned int old = syscall(SYS_personality, 0xffffffff);\n\tsyscall(SYS_personality, READ_IMPLIES_EXEC | old);\n\tsyscall(SYS_remap_file_pages, buf, pagesz, 0, 2, 0);\n\tsyscall(SYS_personality, old);\n\t// show the RWX page exists even if W^X policy is enforced\n\tint fd = open(\"/proc/self/maps\", O_RDONLY);\n\tunsigned char buf2[1024];\n\twhile (1) {\n\t\tint ret = read(fd, buf2, 1024);\n\t\tif (ret \u003c= 0) break;\n\t\twrite(1, buf2, ret);\n\t}\n\tclose(fd);\n}\n\n$ gcc test.c -o test\n$ ./test | grep rwx\n7f1836c34000-7f1836c35000 rwxs 00002000 00:01 2050 /memfd:test (deleted)\n\n[PM: subject line tweaks]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47745",
          "url": "https://www.suse.com/security/cve/CVE-2024-47745"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232135 for CVE-2024-47745",
          "url": "https://bugzilla.suse.com/1232135"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-47745"
    },
    {
      "cve": "CVE-2024-47747",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47747"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition\n\nIn the ether3_probe function, a timer is initialized with a callback\nfunction ether3_ledoff, bound to \u0026prev(dev)-\u003etimer. Once the timer is\nstarted, there is a risk of a race condition if the module or device\nis removed, triggering the ether3_remove function to perform cleanup.\nThe sequence of operations that may lead to a UAF bug is as follows:\n\nCPU0                                    CPU1\n\n                      |  ether3_ledoff\nether3_remove         |\n  free_netdev(dev);   |\n  put_devic           |\n  kfree(dev);         |\n |  ether3_outw(priv(dev)-\u003eregs.config2 |= CFG2_CTRLO, REG_CONFIG2);\n                      | // use dev\n\nFix it by ensuring that the timer is canceled before proceeding with\nthe cleanup in ether3_remove.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47747",
          "url": "https://www.suse.com/security/cve/CVE-2024-47747"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232145 for CVE-2024-47747",
          "url": "https://bugzilla.suse.com/1232145"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232146 for CVE-2024-47747",
          "url": "https://bugzilla.suse.com/1232146"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-47747"
    },
    {
      "cve": "CVE-2024-47748",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-47748"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvhost_vdpa: assign irq bypass producer token correctly\n\nWe used to call irq_bypass_unregister_producer() in\nvhost_vdpa_setup_vq_irq() which is problematic as we don\u0027t know if the\ntoken pointer is still valid or not.\n\nActually, we use the eventfd_ctx as the token so the life cycle of the\ntoken should be bound to the VHOST_SET_VRING_CALL instead of\nvhost_vdpa_setup_vq_irq() which could be called by set_status().\n\nFixing this by setting up irq bypass producer\u0027s token when handling\nVHOST_SET_VRING_CALL and un-registering the producer before calling\nvhost_vring_ioctl() to prevent a possible use after free as eventfd\ncould have been released in vhost_vring_ioctl(). And such registering\nand unregistering will only be done if DRIVER_OK is set.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-47748",
          "url": "https://www.suse.com/security/cve/CVE-2024-47748"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232174 for CVE-2024-47748",
          "url": "https://bugzilla.suse.com/1232174"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232177 for CVE-2024-47748",
          "url": "https://bugzilla.suse.com/1232177"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-47748"
    },
    {
      "cve": "CVE-2024-49858",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49858"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefistub/tpm: Use ACPI reclaim memory for event log to avoid corruption\n\nThe TPM event log table is a Linux specific construct, where the data\nproduced by the GetEventLog() boot service is cached in memory, and\npassed on to the OS using an EFI configuration table.\n\nThe use of EFI_LOADER_DATA here results in the region being left\nunreserved in the E820 memory map constructed by the EFI stub, and this\nis the memory description that is passed on to the incoming kernel by\nkexec, which is therefore unaware that the region should be reserved.\n\nEven though the utility of the TPM2 event log after a kexec is\nquestionable, any corruption might send the parsing code off into the\nweeds and crash the kernel. So let\u0027s use EFI_ACPI_RECLAIM_MEMORY\ninstead, which is always treated as reserved by the E820 conversion\nlogic.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49858",
          "url": "https://www.suse.com/security/cve/CVE-2024-49858"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232251 for CVE-2024-49858",
          "url": "https://bugzilla.suse.com/1232251"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49858"
    },
    {
      "cve": "CVE-2024-49860",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49860"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: sysfs: validate return type of _STR method\n\nOnly buffer objects are valid return values of _STR.\n\nIf something else is returned description_show() will access invalid\nmemory.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49860",
          "url": "https://www.suse.com/security/cve/CVE-2024-49860"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231861 for CVE-2024-49860",
          "url": "https://bugzilla.suse.com/1231861"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231862 for CVE-2024-49860",
          "url": "https://bugzilla.suse.com/1231862"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49860"
    },
    {
      "cve": "CVE-2024-49866",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49866"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing/timerlat: Fix a race during cpuhp processing\n\nThere is another found exception that the \"timerlat/1\" thread was\nscheduled on CPU0, and lead to timer corruption finally:\n\n```\nODEBUG: init active (active state 0) object: ffff888237c2e108 object type: hrtimer hint: timerlat_irq+0x0/0x220\nWARNING: CPU: 0 PID: 426 at lib/debugobjects.c:518 debug_print_object+0x7d/0xb0\nModules linked in:\nCPU: 0 UID: 0 PID: 426 Comm: timerlat/1 Not tainted 6.11.0-rc7+ #45\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.13.0-1ubuntu1.1 04/01/2014\nRIP: 0010:debug_print_object+0x7d/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n ? __warn+0x7c/0x110\n ? debug_print_object+0x7d/0xb0\n ? report_bug+0xf1/0x1d0\n ? prb_read_valid+0x17/0x20\n ? handle_bug+0x3f/0x70\n ? exc_invalid_op+0x13/0x60\n ? asm_exc_invalid_op+0x16/0x20\n ? debug_print_object+0x7d/0xb0\n ? debug_print_object+0x7d/0xb0\n ? __pfx_timerlat_irq+0x10/0x10\n __debug_object_init+0x110/0x150\n hrtimer_init+0x1d/0x60\n timerlat_main+0xab/0x2d0\n ? __pfx_timerlat_main+0x10/0x10\n kthread+0xb7/0xe0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2d/0x40\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n```\n\nAfter tracing the scheduling event, it was discovered that the migration\nof the \"timerlat/1\" thread was performed during thread creation. Further\nanalysis confirmed that it is because the CPU online processing for\nosnoise is implemented through workers, which is asynchronous with the\noffline processing. When the worker was scheduled to create a thread, the\nCPU may has already been removed from the cpu_online_mask during the offline\nprocess, resulting in the inability to select the right CPU:\n\nT1                       | T2\n[CPUHP_ONLINE]           | cpu_device_down()\nosnoise_hotplug_workfn() |\n                         |     cpus_write_lock()\n                         |     takedown_cpu(1)\n                         |     cpus_write_unlock()\n[CPUHP_OFFLINE]          |\n    cpus_read_lock()     |\n    start_kthread(1)     |\n    cpus_read_unlock()   |\n\nTo fix this, skip online processing if the CPU is already offline.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49866",
          "url": "https://www.suse.com/security/cve/CVE-2024-49866"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232259 for CVE-2024-49866",
          "url": "https://bugzilla.suse.com/1232259"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49866"
    },
    {
      "cve": "CVE-2024-49867",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49867"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: wait for fixup workers before stopping cleaner kthread during umount\n\nDuring unmount, at close_ctree(), we have the following steps in this order:\n\n1) Park the cleaner kthread - this doesn\u0027t destroy the kthread, it basically\n   halts its execution (wake ups against it work but do nothing);\n\n2) We stop the cleaner kthread - this results in freeing the respective\n   struct task_struct;\n\n3) We call btrfs_stop_all_workers() which waits for any jobs running in all\n   the work queues and then free the work queues.\n\nSyzbot reported a case where a fixup worker resulted in a crash when doing\na delayed iput on its inode while attempting to wake up the cleaner at\nbtrfs_add_delayed_iput(), because the task_struct of the cleaner kthread\nwas already freed. This can happen during unmount because we don\u0027t wait\nfor any fixup workers still running before we call kthread_stop() against\nthe cleaner kthread, which stops and free all its resources.\n\nFix this by waiting for any fixup workers at close_ctree() before we call\nkthread_stop() against the cleaner and run pending delayed iputs.\n\nThe stack traces reported by syzbot were the following:\n\n  BUG: KASAN: slab-use-after-free in __lock_acquire+0x77/0x2050 kernel/locking/lockdep.c:5065\n  Read of size 8 at addr ffff8880272a8a18 by task kworker/u8:3/52\n\n  CPU: 1 UID: 0 PID: 52 Comm: kworker/u8:3 Not tainted 6.12.0-rc1-syzkaller #0\n  Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024\n  Workqueue: btrfs-fixup btrfs_work_helper\n  Call Trace:\n   \u003cTASK\u003e\n   __dump_stack lib/dump_stack.c:94 [inline]\n   dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120\n   print_address_description mm/kasan/report.c:377 [inline]\n   print_report+0x169/0x550 mm/kasan/report.c:488\n   kasan_report+0x143/0x180 mm/kasan/report.c:601\n   __lock_acquire+0x77/0x2050 kernel/locking/lockdep.c:5065\n   lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5825\n   __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n   _raw_spin_lock_irqsave+0xd5/0x120 kernel/locking/spinlock.c:162\n   class_raw_spinlock_irqsave_constructor include/linux/spinlock.h:551 [inline]\n   try_to_wake_up+0xb0/0x1480 kernel/sched/core.c:4154\n   btrfs_writepage_fixup_worker+0xc16/0xdf0 fs/btrfs/inode.c:2842\n   btrfs_work_helper+0x390/0xc50 fs/btrfs/async-thread.c:314\n   process_one_work kernel/workqueue.c:3229 [inline]\n   process_scheduled_works+0xa63/0x1850 kernel/workqueue.c:3310\n   worker_thread+0x870/0xd30 kernel/workqueue.c:3391\n   kthread+0x2f0/0x390 kernel/kthread.c:389\n   ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n   ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n   \u003c/TASK\u003e\n\n  Allocated by task 2:\n   kasan_save_stack mm/kasan/common.c:47 [inline]\n   kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n   unpoison_slab_object mm/kasan/common.c:319 [inline]\n   __kasan_slab_alloc+0x66/0x80 mm/kasan/common.c:345\n   kasan_slab_alloc include/linux/kasan.h:247 [inline]\n   slab_post_alloc_hook mm/slub.c:4086 [inline]\n   slab_alloc_node mm/slub.c:4135 [inline]\n   kmem_cache_alloc_node_noprof+0x16b/0x320 mm/slub.c:4187\n   alloc_task_struct_node kernel/fork.c:180 [inline]\n   dup_task_struct+0x57/0x8c0 kernel/fork.c:1107\n   copy_process+0x5d1/0x3d50 kernel/fork.c:2206\n   kernel_clone+0x223/0x880 kernel/fork.c:2787\n   kernel_thread+0x1bc/0x240 kernel/fork.c:2849\n   create_kthread kernel/kthread.c:412 [inline]\n   kthreadd+0x60d/0x810 kernel/kthread.c:765\n   ret_from_fork+0x4b/0x80 arch/x86/kernel/process.c:147\n   ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244\n\n  Freed by task 61:\n   kasan_save_stack mm/kasan/common.c:47 [inline]\n   kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n   kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:579\n   poison_slab_object mm/kasan/common.c:247 [inline]\n   __kasan_slab_free+0x59/0x70 mm/kasan/common.c:264\n   kasan_slab_free include/linux/kasan.h:230 [inline]\n   slab_free_h\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49867",
          "url": "https://www.suse.com/security/cve/CVE-2024-49867"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232262 for CVE-2024-49867",
          "url": "https://bugzilla.suse.com/1232262"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232271 for CVE-2024-49867",
          "url": "https://bugzilla.suse.com/1232271"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49867"
    },
    {
      "cve": "CVE-2024-49881",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49881"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: update orig_path in ext4_find_extent()\n\nIn ext4_find_extent(), if the path is not big enough, we free it and set\n*orig_path to NULL. But after reallocating and successfully initializing\nthe path, we don\u0027t update *orig_path, in which case the caller gets a\nvalid path but a NULL ppath, and this may cause a NULL pointer dereference\nor a path memory leak. For example:\n\next4_split_extent\n  path = *ppath = 2000\n  ext4_find_extent\n    if (depth \u003e path[0].p_maxdepth)\n      kfree(path = 2000);\n      *orig_path = path = NULL;\n      path = kcalloc() = 3000\n  ext4_split_extent_at(*ppath = NULL)\n    path = *ppath;\n    ex = path[depth].p_ext;\n    // NULL pointer dereference!\n\n==================================================================\nBUG: kernel NULL pointer dereference, address: 0000000000000010\nCPU: 6 UID: 0 PID: 576 Comm: fsstress Not tainted 6.11.0-rc2-dirty #847\nRIP: 0010:ext4_split_extent_at+0x6d/0x560\nCall Trace:\n \u003cTASK\u003e\n ext4_split_extent.isra.0+0xcb/0x1b0\n ext4_ext_convert_to_initialized+0x168/0x6c0\n ext4_ext_handle_unwritten_extents+0x325/0x4d0\n ext4_ext_map_blocks+0x520/0xdb0\n ext4_map_blocks+0x2b0/0x690\n ext4_iomap_begin+0x20e/0x2c0\n[...]\n==================================================================\n\nTherefore, *orig_path is updated when the extent lookup succeeds, so that\nthe caller can safely use path or *ppath.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49881",
          "url": "https://www.suse.com/security/cve/CVE-2024-49881"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232201 for CVE-2024-49881",
          "url": "https://bugzilla.suse.com/1232201"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49881"
    },
    {
      "cve": "CVE-2024-49882",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49882"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix double brelse() the buffer of the extents path\n\nIn ext4_ext_try_to_merge_up(), set path[1].p_bh to NULL after it has been\nreleased, otherwise it may be released twice. An example of what triggers\nthis is as follows:\n\n  split2    map    split1\n|--------|-------|--------|\n\next4_ext_map_blocks\n ext4_ext_handle_unwritten_extents\n  ext4_split_convert_extents\n   // path-\u003ep_depth == 0\n   ext4_split_extent\n     // 1. do split1\n     ext4_split_extent_at\n       |ext4_ext_insert_extent\n       |  ext4_ext_create_new_leaf\n       |    ext4_ext_grow_indepth\n       |      le16_add_cpu(\u0026neh-\u003eeh_depth, 1)\n       |    ext4_find_extent\n       |      // return -ENOMEM\n       |// get error and try zeroout\n       |path = ext4_find_extent\n       |  path-\u003ep_depth = 1\n       |ext4_ext_try_to_merge\n       |  ext4_ext_try_to_merge_up\n       |    path-\u003ep_depth = 0\n       |    brelse(path[1].p_bh)  ---\u003e not set to NULL here\n       |// zeroout success\n     // 2. update path\n     ext4_find_extent\n     // 3. do split2\n     ext4_split_extent_at\n       ext4_ext_insert_extent\n         ext4_ext_create_new_leaf\n           ext4_ext_grow_indepth\n             le16_add_cpu(\u0026neh-\u003eeh_depth, 1)\n           ext4_find_extent\n             path[0].p_bh = NULL;\n             path-\u003ep_depth = 1\n             read_extent_tree_block  ---\u003e return err\n             // path[1].p_bh is still the old value\n             ext4_free_ext_path\n               ext4_ext_drop_refs\n                 // path-\u003ep_depth == 1\n                 brelse(path[1].p_bh)  ---\u003e brelse a buffer twice\n\nFinally got the following WARRNING when removing the buffer from lru:\n\n============================================\nVFS: brelse: Trying to free free buffer\nWARNING: CPU: 2 PID: 72 at fs/buffer.c:1241 __brelse+0x58/0x90\nCPU: 2 PID: 72 Comm: kworker/u19:1 Not tainted 6.9.0-dirty #716\nRIP: 0010:__brelse+0x58/0x90\nCall Trace:\n \u003cTASK\u003e\n __find_get_block+0x6e7/0x810\n bdev_getblk+0x2b/0x480\n __ext4_get_inode_loc+0x48a/0x1240\n ext4_get_inode_loc+0xb2/0x150\n ext4_reserve_inode_write+0xb7/0x230\n __ext4_mark_inode_dirty+0x144/0x6a0\n ext4_ext_insert_extent+0x9c8/0x3230\n ext4_ext_map_blocks+0xf45/0x2dc0\n ext4_map_blocks+0x724/0x1700\n ext4_do_writepages+0x12d6/0x2a70\n[...]\n============================================",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49882",
          "url": "https://www.suse.com/security/cve/CVE-2024-49882"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232200 for CVE-2024-49882",
          "url": "https://bugzilla.suse.com/1232200"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49882"
    },
    {
      "cve": "CVE-2024-49883",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49883"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: aovid use-after-free in ext4_ext_insert_extent()\n\nAs Ojaswin mentioned in Link, in ext4_ext_insert_extent(), if the path is\nreallocated in ext4_ext_create_new_leaf(), we\u0027ll use the stale path and\ncause UAF. Below is a sample trace with dummy values:\n\next4_ext_insert_extent\n  path = *ppath = 2000\n  ext4_ext_create_new_leaf(ppath)\n    ext4_find_extent(ppath)\n      path = *ppath = 2000\n      if (depth \u003e path[0].p_maxdepth)\n            kfree(path = 2000);\n            *ppath = path = NULL;\n      path = kcalloc() = 3000\n      *ppath = 3000;\n      return path;\n  /* here path is still 2000, UAF! */\n  eh = path[depth].p_hdr\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_ext_insert_extent+0x26d4/0x3330\nRead of size 8 at addr ffff8881027bf7d0 by task kworker/u36:1/179\nCPU: 3 UID: 0 PID: 179 Comm: kworker/u6:1 Not tainted 6.11.0-rc2-dirty #866\nCall Trace:\n \u003cTASK\u003e\n ext4_ext_insert_extent+0x26d4/0x3330\n ext4_ext_map_blocks+0xe22/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n[...]\n\nAllocated by task 179:\n ext4_find_extent+0x81c/0x1f70\n ext4_ext_map_blocks+0x146/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n ext4_writepages+0x26d/0x4e0\n do_writepages+0x175/0x700\n[...]\n\nFreed by task 179:\n kfree+0xcb/0x240\n ext4_find_extent+0x7c0/0x1f70\n ext4_ext_insert_extent+0xa26/0x3330\n ext4_ext_map_blocks+0xe22/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n ext4_writepages+0x26d/0x4e0\n do_writepages+0x175/0x700\n[...]\n==================================================================\n\nSo use *ppath to update the path to avoid the above problem.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49883",
          "url": "https://www.suse.com/security/cve/CVE-2024-49883"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232199 for CVE-2024-49883",
          "url": "https://bugzilla.suse.com/1232199"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49883"
    },
    {
      "cve": "CVE-2024-49886",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49886"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug\n\nAttaching SST PCI device to VM causes \"BUG: KASAN: slab-out-of-bounds\".\nkasan report:\n[   19.411889] ==================================================================\n[   19.413702] BUG: KASAN: slab-out-of-bounds in _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[   19.415634] Read of size 8 at addr ffff888829e65200 by task cpuhp/16/113\n[   19.417368]\n[   19.418627] CPU: 16 PID: 113 Comm: cpuhp/16 Tainted: G            E      6.9.0 #10\n[   19.420435] Hardware name: VMware, Inc. VMware20,1/440BX Desktop Reference Platform, BIOS VMW201.00V.20192059.B64.2207280713 07/28/2022\n[   19.422687] Call Trace:\n[   19.424091]  \u003cTASK\u003e\n[   19.425448]  dump_stack_lvl+0x5d/0x80\n[   19.426963]  ? _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[   19.428694]  print_report+0x19d/0x52e\n[   19.430206]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[   19.431837]  ? _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[   19.433539]  kasan_report+0xf0/0x170\n[   19.435019]  ? _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[   19.436709]  _isst_if_get_pci_dev+0x3d5/0x400 [isst_if_common]\n[   19.438379]  ? __pfx_sched_clock_cpu+0x10/0x10\n[   19.439910]  isst_if_cpu_online+0x406/0x58f [isst_if_common]\n[   19.441573]  ? __pfx_isst_if_cpu_online+0x10/0x10 [isst_if_common]\n[   19.443263]  ? ttwu_queue_wakelist+0x2c1/0x360\n[   19.444797]  cpuhp_invoke_callback+0x221/0xec0\n[   19.446337]  cpuhp_thread_fun+0x21b/0x610\n[   19.447814]  ? __pfx_cpuhp_thread_fun+0x10/0x10\n[   19.449354]  smpboot_thread_fn+0x2e7/0x6e0\n[   19.450859]  ? __pfx_smpboot_thread_fn+0x10/0x10\n[   19.452405]  kthread+0x29c/0x350\n[   19.453817]  ? __pfx_kthread+0x10/0x10\n[   19.455253]  ret_from_fork+0x31/0x70\n[   19.456685]  ? __pfx_kthread+0x10/0x10\n[   19.458114]  ret_from_fork_asm+0x1a/0x30\n[   19.459573]  \u003c/TASK\u003e\n[   19.460853]\n[   19.462055] Allocated by task 1198:\n[   19.463410]  kasan_save_stack+0x30/0x50\n[   19.464788]  kasan_save_track+0x14/0x30\n[   19.466139]  __kasan_kmalloc+0xaa/0xb0\n[   19.467465]  __kmalloc+0x1cd/0x470\n[   19.468748]  isst_if_cdev_register+0x1da/0x350 [isst_if_common]\n[   19.470233]  isst_if_mbox_init+0x108/0xff0 [isst_if_mbox_msr]\n[   19.471670]  do_one_initcall+0xa4/0x380\n[   19.472903]  do_init_module+0x238/0x760\n[   19.474105]  load_module+0x5239/0x6f00\n[   19.475285]  init_module_from_file+0xd1/0x130\n[   19.476506]  idempotent_init_module+0x23b/0x650\n[   19.477725]  __x64_sys_finit_module+0xbe/0x130\n[   19.476506]  idempotent_init_module+0x23b/0x650\n[   19.477725]  __x64_sys_finit_module+0xbe/0x130\n[   19.478920]  do_syscall_64+0x82/0x160\n[   19.480036]  entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[   19.481292]\n[   19.482205] The buggy address belongs to the object at ffff888829e65000\n which belongs to the cache kmalloc-512 of size 512\n[   19.484818] The buggy address is located 0 bytes to the right of\n allocated 512-byte region [ffff888829e65000, ffff888829e65200)\n[   19.487447]\n[   19.488328] The buggy address belongs to the physical page:\n[   19.489569] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888829e60c00 pfn:0x829e60\n[   19.491140] head: order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0\n[   19.492466] anon flags: 0x57ffffc0000840(slab|head|node=1|zone=2|lastcpupid=0x1fffff)\n[   19.493914] page_type: 0xffffffff()\n[   19.494988] raw: 0057ffffc0000840 ffff88810004cc80 0000000000000000 0000000000000001\n[   19.496451] raw: ffff888829e60c00 0000000080200018 00000001ffffffff 0000000000000000\n[   19.497906] head: 0057ffffc0000840 ffff88810004cc80 0000000000000000 0000000000000001\n[   19.499379] head: ffff888829e60c00 0000000080200018 00000001ffffffff 0000000000000000\n[   19.500844] head: 0057ffffc0000003 ffffea0020a79801 ffffea0020a79848 00000000ffffffff\n[   19.502316] head: 0000000800000000 0000000000000000 00000000ffffffff 0000000000000000\n[   19.503784] page dumped because: k\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49886",
          "url": "https://www.suse.com/security/cve/CVE-2024-49886"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232196 for CVE-2024-49886",
          "url": "https://bugzilla.suse.com/1232196"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49886"
    },
    {
      "cve": "CVE-2024-49890",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49890"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: ensure the fw_info is not null before using it\n\nThis resolves the dereference null return value warning\nreported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49890",
          "url": "https://www.suse.com/security/cve/CVE-2024-49890"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232217 for CVE-2024-49890",
          "url": "https://bugzilla.suse.com/1232217"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49890"
    },
    {
      "cve": "CVE-2024-49892",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49892"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Initialize get_bytes_per_element\u0027s default to 1\n\nVariables, used as denominators and maybe not assigned to other values,\nshould not be 0. bytes_per_element_y \u0026 bytes_per_element_c are\ninitialized by get_bytes_per_element() which should never return 0.\n\nThis fixes 10 DIVIDE_BY_ZERO issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49892",
          "url": "https://www.suse.com/security/cve/CVE-2024-49892"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232220 for CVE-2024-49892",
          "url": "https://bugzilla.suse.com/1232220"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49892"
    },
    {
      "cve": "CVE-2024-49894",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49894"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index out of bounds in degamma hardware format translation\n\nFixes index out of bounds issue in\n`cm_helper_translate_curve_to_degamma_hw_format` function. The issue\ncould occur when the index \u0027i\u0027 exceeds the number of transfer function\npoints (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds the function returns\nfalse to indicate an error.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:594 cm_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:595 cm_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10_cm_common.c:596 cm_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49894",
          "url": "https://www.suse.com/security/cve/CVE-2024-49894"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232354 for CVE-2024-49894",
          "url": "https://bugzilla.suse.com/1232354"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49894"
    },
    {
      "cve": "CVE-2024-49895",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49895"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation\n\nThis commit addresses a potential index out of bounds issue in the\n`cm3_helper_translate_curve_to_degamma_hw_format` function in the DCN30\ncolor  management module. The issue could occur when the index \u0027i\u0027\nexceeds the  number of transfer function points (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds, the function returns\nfalse to indicate an error.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:338 cm3_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:339 cm3_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:340 cm3_helper_translate_curve_to_degamma_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49895",
          "url": "https://www.suse.com/security/cve/CVE-2024-49895"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232352 for CVE-2024-49895",
          "url": "https://bugzilla.suse.com/1232352"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-49895"
    },
    {
      "cve": "CVE-2024-49896",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49896"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check stream before comparing them\n\n[WHAT \u0026 HOW]\namdgpu_dm can pass a null stream to dc_is_stream_unchanged. It is\nnecessary to check for null before dereferencing them.\n\nThis fixes 1 FORWARD_NULL issue reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49896",
          "url": "https://www.suse.com/security/cve/CVE-2024-49896"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232221 for CVE-2024-49896",
          "url": "https://bugzilla.suse.com/1232221"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49896"
    },
    {
      "cve": "CVE-2024-49897",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49897"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check phantom_stream before it is used\n\ndcn32_enable_phantom_stream can return null, so returned value\nmust be checked before used.\n\nThis fixes 1 NULL_RETURNS issue reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49897",
          "url": "https://www.suse.com/security/cve/CVE-2024-49897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232355 for CVE-2024-49897",
          "url": "https://bugzilla.suse.com/1232355"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49897"
    },
    {
      "cve": "CVE-2024-49899",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49899"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Initialize denominators\u0027 default to 1\n\n[WHAT \u0026 HOW]\nVariables used as denominators and maybe not assigned to other values,\nshould not be 0. Change their default to 1 so they are never 0.\n\nThis fixes 10 DIVIDE_BY_ZERO issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49899",
          "url": "https://www.suse.com/security/cve/CVE-2024-49899"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232358 for CVE-2024-49899",
          "url": "https://bugzilla.suse.com/1232358"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49899"
    },
    {
      "cve": "CVE-2024-49901",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49901"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/adreno: Assign msm_gpu-\u003epdev earlier to avoid nullptrs\n\nThere are some cases, such as the one uncovered by Commit 46d4efcccc68\n(\"drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting fails\")\nwhere\n\nmsm_gpu_cleanup() : platform_set_drvdata(gpu-\u003epdev, NULL);\n\nis called on gpu-\u003epdev == NULL, as the GPU device has not been fully\ninitialized yet.\n\nTurns out that there\u0027s more than just the aforementioned path that\ncauses this to happen (e.g. the case when there\u0027s speedbin data in the\ncatalog, but opp-supported-hw is missing in DT).\n\nAssigning msm_gpu-\u003epdev earlier seems like the least painful solution\nto this, therefore do so.\n\nPatchwork: https://patchwork.freedesktop.org/patch/602742/",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49901",
          "url": "https://www.suse.com/security/cve/CVE-2024-49901"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232305 for CVE-2024-49901",
          "url": "https://bugzilla.suse.com/1232305"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49901"
    },
    {
      "cve": "CVE-2024-49906",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49906"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointer before try to access it\n\n[why \u0026 how]\nChange the order of the pipe_ctx-\u003eplane_state check to ensure that\nplane_state is not null before accessing it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49906",
          "url": "https://www.suse.com/security/cve/CVE-2024-49906"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232332 for CVE-2024-49906",
          "url": "https://bugzilla.suse.com/1232332"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49906"
    },
    {
      "cve": "CVE-2024-49908",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49908"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for \u0027afb\u0027 in amdgpu_dm_update_cursor (v2)\n\nThis commit adds a null check for the \u0027afb\u0027 variable in the\namdgpu_dm_update_cursor function. Previously, \u0027afb\u0027 was assumed to be\nnull at line 8388, but was used later in the code without a null check.\nThis could potentially lead to a null pointer dereference.\n\nChanges since v1:\n- Moved the null check for \u0027afb\u0027 to the line where \u0027afb\u0027 is used. (Alex)\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/../display/amdgpu_dm/amdgpu_dm.c:8433 amdgpu_dm_update_cursor()\n\terror: we previously assumed \u0027afb\u0027 could be null (see line 8388)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49908",
          "url": "https://www.suse.com/security/cve/CVE-2024-49908"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232335 for CVE-2024-49908",
          "url": "https://bugzilla.suse.com/1232335"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49908"
    },
    {
      "cve": "CVE-2024-49909",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49909"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the dcn32_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for null, but then it was being\ndereferenced without any null check. This could lead to a null pointer\ndereference if set_output_gamma is null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a null check for set_output_gamma\nbefore the call to set_output_gamma.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49909",
          "url": "https://www.suse.com/security/cve/CVE-2024-49909"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232337 for CVE-2024-49909",
          "url": "https://bugzilla.suse.com/1232337"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49909"
    },
    {
      "cve": "CVE-2024-49911",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49911"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func\n\nThis commit adds a null check for the set_output_gamma function pointer\nin the dcn20_set_output_transfer_func function. Previously,\nset_output_gamma was being checked for null at line 1030, but then it\nwas being dereferenced without any null check at line 1048. This could\npotentially lead to a null pointer dereference error if set_output_gamma\nis null.\n\nTo fix this, we now ensure that set_output_gamma is not null before\ndereferencing it. We do this by adding a null check for set_output_gamma\nbefore the call to set_output_gamma at line 1048.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49911",
          "url": "https://www.suse.com/security/cve/CVE-2024-49911"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232366 for CVE-2024-49911",
          "url": "https://bugzilla.suse.com/1232366"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49911"
    },
    {
      "cve": "CVE-2024-49912",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49912"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Handle null \u0027stream_status\u0027 in \u0027planes_changed_for_existing_stream\u0027\n\nThis commit adds a null check for \u0027stream_status\u0027 in the function\n\u0027planes_changed_for_existing_stream\u0027. Previously, the code assumed\n\u0027stream_status\u0027 could be null, but did not handle the case where it was\nactually null. This could lead to a null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/core/dc_resource.c:3784 planes_changed_for_existing_stream() error: we previously assumed \u0027stream_status\u0027 could be null (see line 3774)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49912",
          "url": "https://www.suse.com/security/cve/CVE-2024-49912"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232367 for CVE-2024-49912",
          "url": "https://bugzilla.suse.com/1232367"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49912"
    },
    {
      "cve": "CVE-2024-49913",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49913"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream\n\nThis commit addresses a null pointer dereference issue in the\n`commit_planes_for_stream` function at line 4140. The issue could occur\nwhen `top_pipe_to_program` is null.\n\nThe fix adds a check to ensure `top_pipe_to_program` is not null before\naccessing its stream_res. This prevents a null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/core/dc.c:4140 commit_planes_for_stream() error: we previously assumed \u0027top_pipe_to_program\u0027 could be null (see line 3906)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49913",
          "url": "https://www.suse.com/security/cve/CVE-2024-49913"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232307 for CVE-2024-49913",
          "url": "https://bugzilla.suse.com/1232307"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49913"
    },
    {
      "cve": "CVE-2024-49914",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49914"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for pipe_ctx-\u003eplane_state in dcn20_program_pipe\n\nThis commit addresses a null pointer dereference issue in the\n`dcn20_program_pipe` function. The issue could occur when\n`pipe_ctx-\u003eplane_state` is null.\n\nThe fix adds a check to ensure `pipe_ctx-\u003eplane_state` is not null\nbefore accessing. This prevents a null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn20/dcn20_hwseq.c:1925 dcn20_program_pipe() error: we previously assumed \u0027pipe_ctx-\u003eplane_state\u0027 could be null (see line 1877)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49914",
          "url": "https://www.suse.com/security/cve/CVE-2024-49914"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232369 for CVE-2024-49914",
          "url": "https://bugzilla.suse.com/1232369"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49914"
    },
    {
      "cve": "CVE-2024-49917",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49917"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add NULL check for clk_mgr and clk_mgr-\u003efuncs in dcn30_init_hw\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn30_init_hw` function. The issue could occur when `dc-\u003eclk_mgr` or\n`dc-\u003eclk_mgr-\u003efuncs` is null.\n\nThe fix adds a check to ensure `dc-\u003eclk_mgr` and `dc-\u003eclk_mgr-\u003efuncs` is\nnot null before accessing its functions. This prevents a potential null\npointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:789 dcn30_init_hw() error: we previously assumed \u0027dc-\u003eclk_mgr\u0027 could be null (see line 628)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49917",
          "url": "https://www.suse.com/security/cve/CVE-2024-49917"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231965 for CVE-2024-49917",
          "url": "https://bugzilla.suse.com/1231965"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49917"
    },
    {
      "cve": "CVE-2024-49918",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49918"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn32_acquire_idle_pipe_for_head_pipe_in_layer` function. The issue\ncould occur when `head_pipe` is null.\n\nThe fix adds a check to ensure `head_pipe` is not null before asserting\nit. If `head_pipe` is null, the function returns NULL to prevent a\npotential null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn32/dcn32_resource.c:2690 dcn32_acquire_idle_pipe_for_head_pipe_in_layer() error: we previously assumed \u0027head_pipe\u0027 could be null (see line 2681)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49918",
          "url": "https://www.suse.com/security/cve/CVE-2024-49918"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231967 for CVE-2024-49918",
          "url": "https://bugzilla.suse.com/1231967"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49918"
    },
    {
      "cve": "CVE-2024-49919",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49919"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer\n\nThis commit addresses a potential null pointer dereference issue in the\n`dcn201_acquire_free_pipe_for_layer` function. The issue could occur\nwhen `head_pipe` is null.\n\nThe fix adds a check to ensure `head_pipe` is not null before asserting\nit. If `head_pipe` is null, the function returns NULL to prevent a\npotential null pointer dereference.\n\nReported by smatch:\ndrivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn201/dcn201_resource.c:1016 dcn201_acquire_free_pipe_for_layer() error: we previously assumed \u0027head_pipe\u0027 could be null (see line 1010)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49919",
          "url": "https://www.suse.com/security/cve/CVE-2024-49919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1231968 for CVE-2024-49919",
          "url": "https://bugzilla.suse.com/1231968"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49919"
    },
    {
      "cve": "CVE-2024-49920",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49920"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before multiple uses\n\n[WHAT \u0026 HOW]\nPoniters, such as stream_enc and dc-\u003ebw_vbios, are null checked previously\nin the same function, so Coverity warns \"implies that stream_enc and\ndc-\u003ebw_vbios might be null\". They are used multiple times in the\nsubsequent code and need to be checked.\n\nThis fixes 10 FORWARD_NULL issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49920",
          "url": "https://www.suse.com/security/cve/CVE-2024-49920"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232313 for CVE-2024-49920",
          "url": "https://bugzilla.suse.com/1232313"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49920"
    },
    {
      "cve": "CVE-2024-49922",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49922"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check null pointers before using them\n\n[WHAT \u0026 HOW]\nThese pointers are null checked previously in the same function,\nindicating they might be null as reported by Coverity. As a result,\nthey need to be checked when used again.\n\nThis fixes 3 FORWARD_NULL issue reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49922",
          "url": "https://www.suse.com/security/cve/CVE-2024-49922"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232374 for CVE-2024-49922",
          "url": "https://bugzilla.suse.com/1232374"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49922"
    },
    {
      "cve": "CVE-2024-49923",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49923"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags\n\n[WHAT \u0026 HOW]\n\"dcn20_validate_apply_pipe_split_flags\" dereferences merge, and thus it\ncannot be a null pointer. Let\u0027s pass a valid pointer to avoid null\ndereference.\n\nThis fixes 2 FORWARD_NULL issues reported by Coverity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49923",
          "url": "https://www.suse.com/security/cve/CVE-2024-49923"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232361 for CVE-2024-49923",
          "url": "https://bugzilla.suse.com/1232361"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49923"
    },
    {
      "cve": "CVE-2024-49929",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49929"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: avoid NULL pointer dereference\n\niwl_mvm_tx_skb_sta() and iwl_mvm_tx_mpdu() verify that the mvmvsta\npointer is not NULL.\nIt retrieves this pointer using iwl_mvm_sta_from_mac80211, which is\ndereferencing the ieee80211_sta pointer.\nIf sta is NULL, iwl_mvm_sta_from_mac80211 will dereference a NULL\npointer.\nFix this by checking the sta pointer before retrieving the mvmsta\nfrom it. If sta is not NULL, then mvmsta isn\u0027t either.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49929",
          "url": "https://www.suse.com/security/cve/CVE-2024-49929"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232253 for CVE-2024-49929",
          "url": "https://bugzilla.suse.com/1232253"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49929"
    },
    {
      "cve": "CVE-2024-49930",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49930"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix array out-of-bound access in SoC stats\n\nCurrently, the ath11k_soc_dp_stats::hal_reo_error array is defined with a\nmaximum size of DP_REO_DST_RING_MAX. However, the ath11k_dp_process_rx()\nfunction access ath11k_soc_dp_stats::hal_reo_error using the REO\ndestination SRNG ring ID, which is incorrect. SRNG ring ID differ from\nnormal ring ID, and this usage leads to out-of-bounds array access. To fix\nthis issue, modify ath11k_dp_process_rx() to use the normal ring ID\ndirectly instead of the SRNG ring ID to avoid out-of-bounds array access.\n\nTested-on: QCN9074 hw1.0 PCI WLAN.HK.2.7.0.1-01744-QCAHKSWPL_SILICONZ-1",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49930",
          "url": "https://www.suse.com/security/cve/CVE-2024-49930"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232260 for CVE-2024-49930",
          "url": "https://bugzilla.suse.com/1232260"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232261 for CVE-2024-49930",
          "url": "https://bugzilla.suse.com/1232261"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49930"
    },
    {
      "cve": "CVE-2024-49933",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49933"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk_iocost: fix more out of bound shifts\n\nRecently running UBSAN caught few out of bound shifts in the\nioc_forgive_debts() function:\n\nUBSAN: shift-out-of-bounds in block/blk-iocost.c:2142:38\nshift exponent 80 is too large for 64-bit type \u0027u64\u0027 (aka \u0027unsigned long\nlong\u0027)\n...\nUBSAN: shift-out-of-bounds in block/blk-iocost.c:2144:30\nshift exponent 80 is too large for 64-bit type \u0027u64\u0027 (aka \u0027unsigned long\nlong\u0027)\n...\nCall Trace:\n\u003cIRQ\u003e\ndump_stack_lvl+0xca/0x130\n__ubsan_handle_shift_out_of_bounds+0x22c/0x280\n? __lock_acquire+0x6441/0x7c10\nioc_timer_fn+0x6cec/0x7750\n? blk_iocost_init+0x720/0x720\n? call_timer_fn+0x5d/0x470\ncall_timer_fn+0xfa/0x470\n? blk_iocost_init+0x720/0x720\n__run_timer_base+0x519/0x700\n...\n\nActual impact of this issue was not identified but I propose to fix the\nundefined behaviour.\nThe proposed fix to prevent those out of bound shifts consist of\nprecalculating exponent before using it the shift operations by taking\nmin value from the actual exponent and maximum possible number of bits.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49933",
          "url": "https://www.suse.com/security/cve/CVE-2024-49933"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232368 for CVE-2024-49933",
          "url": "https://bugzilla.suse.com/1232368"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49933"
    },
    {
      "cve": "CVE-2024-49936",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49936"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/xen-netback: prevent UAF in xenvif_flush_hash()\n\nDuring the list_for_each_entry_rcu iteration call of xenvif_flush_hash,\nkfree_rcu does not exist inside the rcu read critical section, so if\nkfree_rcu is called when the rcu grace period ends during the iteration,\nUAF occurs when accessing head-\u003enext after the entry becomes free.\n\nTherefore, to solve this, you need to change it to list_for_each_entry_safe.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49936",
          "url": "https://www.suse.com/security/cve/CVE-2024-49936"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232424 for CVE-2024-49936",
          "url": "https://bugzilla.suse.com/1232424"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232426 for CVE-2024-49936",
          "url": "https://bugzilla.suse.com/1232426"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49936"
    },
    {
      "cve": "CVE-2024-49939",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49939"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw89: avoid to add interface to list twice when SER\n\nIf SER L2 occurs during the WoWLAN resume flow, the add interface flow\nis triggered by ieee80211_reconfig(). However, due to\nrtw89_wow_resume() return failure, it will cause the add interface flow\nto be executed again, resulting in a double add list and causing a kernel\npanic. Therefore, we have added a check to prevent double adding of the\nlist.\n\nlist_add double add: new=ffff99d6992e2010, prev=ffff99d6992e2010, next=ffff99d695302628.\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:37!\ninvalid opcode: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 0 PID: 9 Comm: kworker/0:1 Tainted: G        W  O       6.6.30-02659-gc18865c4dfbd #1 770df2933251a0e3c888ba69d1053a817a6376a7\nHardware name: HP Grunt/Grunt, BIOS Google_Grunt.11031.169.0 06/24/2021\nWorkqueue: events_freezable ieee80211_restart_work [mac80211]\nRIP: 0010:__list_add_valid_or_report+0x5e/0xb0\nCode: c7 74 18 48 39 ce 74 13 b0 01 59 5a 5e 5f 41 58 41 59 41 5a 5d e9 e2 d6 03 00 cc 48 c7 c7 8d 4f 17 83 48 89 c2 e8 02 c0 00 00 \u003c0f\u003e 0b 48 c7 c7 aa 8c 1c 83 e8 f4 bf 00 00 0f 0b 48 c7 c7 c8 bc 12\nRSP: 0018:ffffa91b8007bc50 EFLAGS: 00010246\nRAX: 0000000000000058 RBX: ffff99d6992e0900 RCX: a014d76c70ef3900\nRDX: ffffa91b8007bae8 RSI: 00000000ffffdfff RDI: 0000000000000001\nRBP: ffffa91b8007bc88 R08: 0000000000000000 R09: ffffa91b8007bae0\nR10: 00000000ffffdfff R11: ffffffff83a79800 R12: ffff99d695302060\nR13: ffff99d695300900 R14: ffff99d6992e1be0 R15: ffff99d6992e2010\nFS:  0000000000000000(0000) GS:ffff99d6aac00000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000078fbdba43480 CR3: 000000010e464000 CR4: 00000000001506f0\nCall Trace:\n \u003cTASK\u003e\n ? __die_body+0x1f/0x70\n ? die+0x3d/0x60\n ? do_trap+0xa4/0x110\n ? __list_add_valid_or_report+0x5e/0xb0\n ? do_error_trap+0x6d/0x90\n ? __list_add_valid_or_report+0x5e/0xb0\n ? handle_invalid_op+0x30/0x40\n ? __list_add_valid_or_report+0x5e/0xb0\n ? exc_invalid_op+0x3c/0x50\n ? asm_exc_invalid_op+0x16/0x20\n ? __list_add_valid_or_report+0x5e/0xb0\n rtw89_ops_add_interface+0x309/0x310 [rtw89_core 7c32b1ee6854761c0321027c8a58c5160e41f48f]\n drv_add_interface+0x5c/0x130 [mac80211 83e989e6e616bd5b4b8a2b0a9f9352a2c385a3bc]\n ieee80211_reconfig+0x241/0x13d0 [mac80211 83e989e6e616bd5b4b8a2b0a9f9352a2c385a3bc]\n ? finish_wait+0x3e/0x90\n ? synchronize_rcu_expedited+0x174/0x260\n ? sync_rcu_exp_done_unlocked+0x50/0x50\n ? wake_bit_function+0x40/0x40\n ieee80211_restart_work+0xf0/0x140 [mac80211 83e989e6e616bd5b4b8a2b0a9f9352a2c385a3bc]\n process_scheduled_works+0x1e5/0x480\n worker_thread+0xea/0x1e0\n kthread+0xdb/0x110\n ? move_linked_works+0x90/0x90\n ? kthread_associate_blkcg+0xa0/0xa0\n ret_from_fork+0x3b/0x50\n ? kthread_associate_blkcg+0xa0/0xa0\n ret_from_fork_asm+0x11/0x20\n \u003c/TASK\u003e\nModules linked in: dm_integrity async_xor xor async_tx lz4 lz4_compress zstd zstd_compress zram zsmalloc rfcomm cmac uinput algif_hash algif_skcipher af_alg btusb btrtl iio_trig_hrtimer industrialio_sw_trigger btmtk industrialio_configfs btbcm btintel uvcvideo videobuf2_vmalloc iio_trig_sysfs videobuf2_memops videobuf2_v4l2 videobuf2_common uvc snd_hda_codec_hdmi veth snd_hda_intel snd_intel_dspcfg acpi_als snd_hda_codec industrialio_triggered_buffer kfifo_buf snd_hwdep industrialio i2c_piix4 snd_hda_core designware_i2s ip6table_nat snd_soc_max98357a xt_MASQUERADE xt_cgroup snd_soc_acp_rt5682_mach fuse rtw89_8922ae(O) rtw89_8922a(O) rtw89_pci(O) rtw89_core(O) 8021q mac80211(O) bluetooth ecdh_generic ecc cfg80211 r8152 mii joydev\ngsmi: Log Shutdown Reason 0x03\n---[ end trace 0000000000000000 ]---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49939",
          "url": "https://www.suse.com/security/cve/CVE-2024-49939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232381 for CVE-2024-49939",
          "url": "https://bugzilla.suse.com/1232381"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49939"
    },
    {
      "cve": "CVE-2024-49946",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49946"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nppp: do not assume bh is held in ppp_channel_bridge_input()\n\nNetworking receive path is usually handled from BH handler.\nHowever, some protocols need to acquire the socket lock, and\npackets might be stored in the socket backlog is the socket was\nowned by a user process.\n\nIn this case, release_sock(), __release_sock(), and sk_backlog_rcv()\nmight call the sk-\u003esk_backlog_rcv() handler in process context.\n\nsybot caught ppp was not considering this case in\nppp_channel_bridge_input() :\n\nWARNING: inconsistent lock state\n6.11.0-rc7-syzkaller-g5f5673607153 #0 Not tainted\n--------------------------------\ninconsistent {SOFTIRQ-ON-W} -\u003e {IN-SOFTIRQ-W} usage.\nksoftirqd/1/24 [HC0[0]:SC1[1]:HE1:SE0] takes:\n ffff0000db7f11e0 (\u0026pch-\u003edownl){+.?.}-{2:2}, at: spin_lock include/linux/spinlock.h:351 [inline]\n ffff0000db7f11e0 (\u0026pch-\u003edownl){+.?.}-{2:2}, at: ppp_channel_bridge_input drivers/net/ppp/ppp_generic.c:2272 [inline]\n ffff0000db7f11e0 (\u0026pch-\u003edownl){+.?.}-{2:2}, at: ppp_input+0x16c/0x854 drivers/net/ppp/ppp_generic.c:2304\n{SOFTIRQ-ON-W} state was registered at:\n   lock_acquire+0x240/0x728 kernel/locking/lockdep.c:5759\n   __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline]\n   _raw_spin_lock+0x48/0x60 kernel/locking/spinlock.c:154\n   spin_lock include/linux/spinlock.h:351 [inline]\n   ppp_channel_bridge_input drivers/net/ppp/ppp_generic.c:2272 [inline]\n   ppp_input+0x16c/0x854 drivers/net/ppp/ppp_generic.c:2304\n   pppoe_rcv_core+0xfc/0x314 drivers/net/ppp/pppoe.c:379\n   sk_backlog_rcv include/net/sock.h:1111 [inline]\n   __release_sock+0x1a8/0x3d8 net/core/sock.c:3004\n   release_sock+0x68/0x1b8 net/core/sock.c:3558\n   pppoe_sendmsg+0xc8/0x5d8 drivers/net/ppp/pppoe.c:903\n   sock_sendmsg_nosec net/socket.c:730 [inline]\n   __sock_sendmsg net/socket.c:745 [inline]\n   __sys_sendto+0x374/0x4f4 net/socket.c:2204\n   __do_sys_sendto net/socket.c:2216 [inline]\n   __se_sys_sendto net/socket.c:2212 [inline]\n   __arm64_sys_sendto+0xd8/0xf8 net/socket.c:2212\n   __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]\n   invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49\n   el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132\n   do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151\n   el0_svc+0x54/0x168 arch/arm64/kernel/entry-common.c:712\n   el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730\n   el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598\nirq event stamp: 282914\n hardirqs last  enabled at (282914): [\u003cffff80008b42e30c\u003e] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline]\n hardirqs last  enabled at (282914): [\u003cffff80008b42e30c\u003e] _raw_spin_unlock_irqrestore+0x38/0x98 kernel/locking/spinlock.c:194\n hardirqs last disabled at (282913): [\u003cffff80008b42e13c\u003e] __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:108 [inline]\n hardirqs last disabled at (282913): [\u003cffff80008b42e13c\u003e] _raw_spin_lock_irqsave+0x2c/0x7c kernel/locking/spinlock.c:162\n softirqs last  enabled at (282904): [\u003cffff8000801f8e88\u003e] softirq_handle_end kernel/softirq.c:400 [inline]\n softirqs last  enabled at (282904): [\u003cffff8000801f8e88\u003e] handle_softirqs+0xa3c/0xbfc kernel/softirq.c:582\n softirqs last disabled at (282909): [\u003cffff8000801fbdf8\u003e] run_ksoftirqd+0x70/0x158 kernel/softirq.c:928\n\nother info that might help us debug this:\n Possible unsafe locking scenario:\n\n       CPU0\n       ----\n  lock(\u0026pch-\u003edownl);\n  \u003cInterrupt\u003e\n    lock(\u0026pch-\u003edownl);\n\n *** DEADLOCK ***\n\n1 lock held by ksoftirqd/1/24:\n  #0: ffff80008f74dfa0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x10/0x4c include/linux/rcupdate.h:325\n\nstack backtrace:\nCPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.11.0-rc7-syzkaller-g5f5673607153 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024\nCall trace:\n  dump_backtrace+0x1b8/0x1e4 arch/arm64/kernel/stacktrace.c:319\n  show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:326\n  __dump_sta\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49946",
          "url": "https://www.suse.com/security/cve/CVE-2024-49946"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232164 for CVE-2024-49946",
          "url": "https://bugzilla.suse.com/1232164"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49946"
    },
    {
      "cve": "CVE-2024-49949",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49949"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: avoid potential underflow in qdisc_pkt_len_init() with UFO\n\nAfter commit 7c6d2ecbda83 (\"net: be more gentle about silly gso\nrequests coming from user\") virtio_net_hdr_to_skb() had sanity check\nto detect malicious attempts from user space to cook a bad GSO packet.\n\nThen commit cf9acc90c80ec (\"net: virtio_net_hdr_to_skb: count\ntransport header in UFO\") while fixing one issue, allowed user space\nto cook a GSO packet with the following characteristic :\n\nIPv4 SKB_GSO_UDP, gso_size=3, skb-\u003elen = 28.\n\nWhen this packet arrives in qdisc_pkt_len_init(), we end up\nwith hdr_len = 28 (IPv4 header + UDP header), matching skb-\u003elen\n\nThen the following sets gso_segs to 0 :\n\ngso_segs = DIV_ROUND_UP(skb-\u003elen - hdr_len,\n                        shinfo-\u003egso_size);\n\nThen later we set qdisc_skb_cb(skb)-\u003epkt_len to back to zero :/\n\nqdisc_skb_cb(skb)-\u003epkt_len += (gso_segs - 1) * hdr_len;\n\nThis leads to the following crash in fq_codel [1]\n\nqdisc_pkt_len_init() is best effort, we only want an estimation\nof the bytes sent on the wire, not crashing the kernel.\n\nThis patch is fixing this particular issue, a following one\nadds more sanity checks for another potential bug.\n\n[1]\n[   70.724101] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[   70.724561] #PF: supervisor read access in kernel mode\n[   70.724561] #PF: error_code(0x0000) - not-present page\n[   70.724561] PGD 10ac61067 P4D 10ac61067 PUD 107ee2067 PMD 0\n[   70.724561] Oops: Oops: 0000 [#1] SMP NOPTI\n[   70.724561] CPU: 11 UID: 0 PID: 2163 Comm: b358537762 Not tainted 6.11.0-virtme #991\n[   70.724561] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[   70.724561] RIP: 0010:fq_codel_enqueue (net/sched/sch_fq_codel.c:120 net/sched/sch_fq_codel.c:168 net/sched/sch_fq_codel.c:230) sch_fq_codel\n[ 70.724561] Code: 24 08 49 c1 e1 06 44 89 7c 24 18 45 31 ed 45 31 c0 31 ff 89 44 24 14 4c 03 8b 90 01 00 00 eb 04 39 ca 73 37 4d 8b 39 83 c7 01 \u003c49\u003e 8b 17 49 89 11 41 8b 57 28 45 8b 5f 34 49 c7 07 00 00 00 00 49\nAll code\n========\n   0:\t24 08                \tand    $0x8,%al\n   2:\t49 c1 e1 06          \tshl    $0x6,%r9\n   6:\t44 89 7c 24 18       \tmov    %r15d,0x18(%rsp)\n   b:\t45 31 ed             \txor    %r13d,%r13d\n   e:\t45 31 c0             \txor    %r8d,%r8d\n  11:\t31 ff                \txor    %edi,%edi\n  13:\t89 44 24 14          \tmov    %eax,0x14(%rsp)\n  17:\t4c 03 8b 90 01 00 00 \tadd    0x190(%rbx),%r9\n  1e:\teb 04                \tjmp    0x24\n  20:\t39 ca                \tcmp    %ecx,%edx\n  22:\t73 37                \tjae    0x5b\n  24:\t4d 8b 39             \tmov    (%r9),%r15\n  27:\t83 c7 01             \tadd    $0x1,%edi\n  2a:*\t49 8b 17             \tmov    (%r15),%rdx\t\t\u003c-- trapping instruction\n  2d:\t49 89 11             \tmov    %rdx,(%r9)\n  30:\t41 8b 57 28          \tmov    0x28(%r15),%edx\n  34:\t45 8b 5f 34          \tmov    0x34(%r15),%r11d\n  38:\t49 c7 07 00 00 00 00 \tmovq   $0x0,(%r15)\n  3f:\t49                   \trex.WB\n\nCode starting with the faulting instruction\n===========================================\n   0:\t49 8b 17             \tmov    (%r15),%rdx\n   3:\t49 89 11             \tmov    %rdx,(%r9)\n   6:\t41 8b 57 28          \tmov    0x28(%r15),%edx\n   a:\t45 8b 5f 34          \tmov    0x34(%r15),%r11d\n   e:\t49 c7 07 00 00 00 00 \tmovq   $0x0,(%r15)\n  15:\t49                   \trex.WB\n[   70.724561] RSP: 0018:ffff95ae85e6fb90 EFLAGS: 00000202\n[   70.724561] RAX: 0000000002000000 RBX: ffff95ae841de000 RCX: 0000000000000000\n[   70.724561] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001\n[   70.724561] RBP: ffff95ae85e6fbf8 R08: 0000000000000000 R09: ffff95b710a30000\n[   70.724561] R10: 0000000000000000 R11: bdf289445ce31881 R12: ffff95ae85e6fc58\n[   70.724561] R13: 0000000000000000 R14: 0000000000000040 R15: 0000000000000000\n[   70.724561] FS:  000000002c5c1380(0000) GS:ffff95bd7fcc0000(0000) knlGS:0000000000000000\n[   70.724561] CS:  0010 DS: 0000 ES: 0000 C\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49949",
          "url": "https://www.suse.com/security/cve/CVE-2024-49949"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232160 for CVE-2024-49949",
          "url": "https://bugzilla.suse.com/1232160"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49949"
    },
    {
      "cve": "CVE-2024-49954",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49954"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstatic_call: Replace pointless WARN_ON() in static_call_module_notify()\n\nstatic_call_module_notify() triggers a WARN_ON(), when memory allocation\nfails in __static_call_add_module().\n\nThat\u0027s not really justified, because the failure case must be correctly\nhandled by the well known call chain and the error code is passed\nthrough to the initiating userspace application.\n\nA memory allocation fail is not a fatal problem, but the WARN_ON() takes\nthe machine out when panic_on_warn is set.\n\nReplace it with a pr_warn().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49954",
          "url": "https://www.suse.com/security/cve/CVE-2024-49954"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232155 for CVE-2024-49954",
          "url": "https://bugzilla.suse.com/1232155"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49954"
    },
    {
      "cve": "CVE-2024-49955",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49955"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: battery: Fix possible crash when unregistering a battery hook\n\nWhen a battery hook returns an error when adding a new battery, then\nthe battery hook is automatically unregistered.\nHowever the battery hook provider cannot know that, so it will later\ncall battery_hook_unregister() on the already unregistered battery\nhook, resulting in a crash.\n\nFix this by using the list head to mark already unregistered battery\nhooks as already being unregistered so that they can be ignored by\nbattery_hook_unregister().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49955",
          "url": "https://www.suse.com/security/cve/CVE-2024-49955"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232154 for CVE-2024-49955",
          "url": "https://bugzilla.suse.com/1232154"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49955"
    },
    {
      "cve": "CVE-2024-49958",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49958"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: reserve space for inline xattr before attaching reflink tree\n\nOne of our customers reported a crash and a corrupted ocfs2 filesystem. \nThe crash was due to the detection of corruption.  Upon troubleshooting,\nthe fsck -fn output showed the below corruption\n\n[EXTENT_LIST_FREE] Extent list in owner 33080590 claims 230 as the next free chain record,\nbut fsck believes the largest valid value is 227.  Clamp the next record value? n\n\nThe stat output from the debugfs.ocfs2 showed the following corruption\nwhere the \"Next Free Rec:\" had overshot the \"Count:\" in the root metadata\nblock.\n\n        Inode: 33080590   Mode: 0640   Generation: 2619713622 (0x9c25a856)\n        FS Generation: 904309833 (0x35e6ac49)\n        CRC32: 00000000   ECC: 0000\n        Type: Regular   Attr: 0x0   Flags: Valid\n        Dynamic Features: (0x16) HasXattr InlineXattr Refcounted\n        Extended Attributes Block: 0  Extended Attributes Inline Size: 256\n        User: 0 (root)   Group: 0 (root)   Size: 281320357888\n        Links: 1   Clusters: 141738\n        ctime: 0x66911b56 0x316edcb8 -- Fri Jul 12 06:02:30.829349048 2024\n        atime: 0x66911d6b 0x7f7a28d -- Fri Jul 12 06:11:23.133669517 2024\n        mtime: 0x66911b56 0x12ed75d7 -- Fri Jul 12 06:02:30.317552087 2024\n        dtime: 0x0 -- Wed Dec 31 17:00:00 1969\n        Refcount Block: 2777346\n        Last Extblk: 2886943   Orphan Slot: 0\n        Sub Alloc Slot: 0   Sub Alloc Bit: 14\n        Tree Depth: 1   Count: 227   Next Free Rec: 230\n        ## Offset        Clusters       Block#\n        0  0             2310           2776351\n        1  2310          2139           2777375\n        2  4449          1221           2778399\n        3  5670          731            2779423\n        4  6401          566            2780447\n        .......          ....           .......\n        .......          ....           .......\n\nThe issue was in the reflink workfow while reserving space for inline\nxattr.  The problematic function is ocfs2_reflink_xattr_inline().  By the\ntime this function is called the reflink tree is already recreated at the\ndestination inode from the source inode.  At this point, this function\nreserves space for inline xattrs at the destination inode without even\nchecking if there is space at the root metadata block.  It simply reduces\nthe l_count from 243 to 227 thereby making space of 256 bytes for inline\nxattr whereas the inode already has extents beyond this index (in this\ncase up to 230), thereby causing corruption.\n\nThe fix for this is to reserve space for inline metadata at the destination\ninode before the reflink tree gets recreated. The customer has verified the\nfix.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49958",
          "url": "https://www.suse.com/security/cve/CVE-2024-49958"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232151 for CVE-2024-49958",
          "url": "https://bugzilla.suse.com/1232151"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49958"
    },
    {
      "cve": "CVE-2024-49959",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49959"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error\n\nIn __jbd2_log_wait_for_space(), we might call jbd2_cleanup_journal_tail()\nto recover some journal space. But if an error occurs while executing\njbd2_cleanup_journal_tail() (e.g., an EIO), we don\u0027t stop waiting for free\nspace right away, we try other branches, and if j_committing_transaction\nis NULL (i.e., the tid is 0), we will get the following complain:\n\n============================================\nJBD2: I/O error when updating journal superblock for sdd-8.\n__jbd2_log_wait_for_space: needed 256 blocks and only had 217 space available\n__jbd2_log_wait_for_space: no way to get more journal space in sdd-8\n------------[ cut here ]------------\nWARNING: CPU: 2 PID: 139804 at fs/jbd2/checkpoint.c:109 __jbd2_log_wait_for_space+0x251/0x2e0\nModules linked in:\nCPU: 2 PID: 139804 Comm: kworker/u8:3 Not tainted 6.6.0+ #1\nRIP: 0010:__jbd2_log_wait_for_space+0x251/0x2e0\nCall Trace:\n \u003cTASK\u003e\n add_transaction_credits+0x5d1/0x5e0\n start_this_handle+0x1ef/0x6a0\n jbd2__journal_start+0x18b/0x340\n ext4_dirty_inode+0x5d/0xb0\n __mark_inode_dirty+0xe4/0x5d0\n generic_update_time+0x60/0x70\n[...]\n============================================\n\nSo only if jbd2_cleanup_journal_tail() returns 1, i.e., there is nothing to\nclean up at the moment, continue to try to reclaim free space in other ways.\n\nNote that this fix relies on commit 6f6a6fda2945 (\"jbd2: fix ocfs2 corrupt\nwhen updating journal superblock fails\") to make jbd2_cleanup_journal_tail\nreturn the correct error code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49959",
          "url": "https://www.suse.com/security/cve/CVE-2024-49959"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232149 for CVE-2024-49959",
          "url": "https://bugzilla.suse.com/1232149"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49959"
    },
    {
      "cve": "CVE-2024-49960",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49960"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix timer use-after-free on failed mount\n\nSyzbot has found an ODEBUG bug in ext4_fill_super\n\nThe del_timer_sync function cancels the s_err_report timer,\nwhich reminds about filesystem errors daily. We should\nguarantee the timer is no longer active before kfree(sbi).\n\nWhen filesystem mounting fails, the flow goes to failed_mount3,\nwhere an error occurs when ext4_stop_mmpd is called, causing\na read I/O failure. This triggers the ext4_handle_error function\nthat ultimately re-arms the timer,\nleaving the s_err_report timer active before kfree(sbi) is called.\n\nFix the issue by canceling the s_err_report timer after calling ext4_stop_mmpd.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49960",
          "url": "https://www.suse.com/security/cve/CVE-2024-49960"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232395 for CVE-2024-49960",
          "url": "https://bugzilla.suse.com/1232395"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232803 for CVE-2024-49960",
          "url": "https://bugzilla.suse.com/1232803"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49960"
    },
    {
      "cve": "CVE-2024-49962",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49962"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package()\n\nACPICA commit 4d4547cf13cca820ff7e0f859ba83e1a610b9fd0\n\nACPI_ALLOCATE_ZEROED() may fail, elements might be NULL and will cause\nNULL pointer dereference later.\n\n[ rjw: Subject and changelog edits ]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49962",
          "url": "https://www.suse.com/security/cve/CVE-2024-49962"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232314 for CVE-2024-49962",
          "url": "https://bugzilla.suse.com/1232314"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49962"
    },
    {
      "cve": "CVE-2024-49967",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49967"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49967",
          "url": "https://www.suse.com/security/cve/CVE-2024-49967"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232140 for CVE-2024-49967",
          "url": "https://bugzilla.suse.com/1232140"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49967"
    },
    {
      "cve": "CVE-2024-49969",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49969"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix index out of bounds in DCN30 color transformation\n\nThis commit addresses a potential index out of bounds issue in the\n`cm3_helper_translate_curve_to_hw_format` function in the DCN30 color\nmanagement module. The issue could occur when the index \u0027i\u0027 exceeds the\nnumber of transfer function points (TRANSFER_FUNC_POINTS).\n\nThe fix adds a check to ensure \u0027i\u0027 is within bounds before accessing the\ntransfer function points. If \u0027i\u0027 is out of bounds, the function returns\nfalse to indicate an error.\n\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:180 cm3_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.red\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:181 cm3_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.green\u0027 1025 \u003c= s32max\ndrivers/gpu/drm/amd/amdgpu/../display/dc/dcn30/dcn30_cm_common.c:182 cm3_helper_translate_curve_to_hw_format() error: buffer overflow \u0027output_tf-\u003etf_pts.blue\u0027 1025 \u003c= s32max",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49969",
          "url": "https://www.suse.com/security/cve/CVE-2024-49969"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232519 for CVE-2024-49969",
          "url": "https://bugzilla.suse.com/1232519"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232524 for CVE-2024-49969",
          "url": "https://bugzilla.suse.com/1232524"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49969"
    },
    {
      "cve": "CVE-2024-49973",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49973"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nr8169: add tally counter fields added with RTL8125\n\nRTL8125 added fields to the tally counter, what may result in the chip\ndma\u0027ing these new fields to unallocated memory. Therefore make sure\nthat the allocated memory area is big enough to hold all of the\ntally counter values, even if we use only parts of it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49973",
          "url": "https://www.suse.com/security/cve/CVE-2024-49973"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232105 for CVE-2024-49973",
          "url": "https://bugzilla.suse.com/1232105"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49973"
    },
    {
      "cve": "CVE-2024-49974",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49974"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Limit the number of concurrent async COPY operations\n\nNothing appears to limit the number of concurrent async COPY\noperations that clients can start. In addition, AFAICT each async\nCOPY can copy an unlimited number of 4MB chunks, so can run for a\nlong time. Thus IMO async COPY can become a DoS vector.\n\nAdd a restriction mechanism that bounds the number of concurrent\nbackground COPY operations. Start simple and try to be fair -- this\npatch implements a per-namespace limit.\n\nAn async COPY request that occurs while this limit is exceeded gets\nNFS4ERR_DELAY. The requesting client can choose to send the request\nagain after a delay or fall back to a traditional read/write style\ncopy.\n\nIf there is need to make the mechanism more sophisticated, we can\nvisit that in future patches.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49974",
          "url": "https://www.suse.com/security/cve/CVE-2024-49974"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232383 for CVE-2024-49974",
          "url": "https://bugzilla.suse.com/1232383"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232384 for CVE-2024-49974",
          "url": "https://bugzilla.suse.com/1232384"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49974"
    },
    {
      "cve": "CVE-2024-49975",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49975"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuprobes: fix kernel info leak via \"[uprobes]\" vma\n\nxol_add_vma() maps the uninitialized page allocated by __create_xol_area()\ninto userspace. On some architectures (x86) this memory is readable even\nwithout VM_READ, VM_EXEC results in the same pgprot_t as VM_EXEC|VM_READ,\nalthough this doesn\u0027t really matter, debugger can read this memory anyway.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49975",
          "url": "https://www.suse.com/security/cve/CVE-2024-49975"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232104 for CVE-2024-49975",
          "url": "https://bugzilla.suse.com/1232104"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49975"
    },
    {
      "cve": "CVE-2024-49982",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49982"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\naoe: fix the potential use-after-free problem in more places\n\nFor fixing CVE-2023-6270, f98364e92662 (\"aoe: fix the potential\nuse-after-free problem in aoecmd_cfg_pkts\") makes tx() calling dev_put()\ninstead of doing in aoecmd_cfg_pkts(). It avoids that the tx() runs\ninto use-after-free.\n\nThen Nicolai Stange found more places in aoe have potential use-after-free\nproblem with tx(). e.g. revalidate(), aoecmd_ata_rw(), resend(), probe()\nand aoecmd_cfg_rsp(). Those functions also use aoenet_xmit() to push\npacket to tx queue. So they should also use dev_hold() to increase the\nrefcnt of skb-\u003edev.\n\nOn the other hand, moving dev_put() to tx() causes that the refcnt of\nskb-\u003edev be reduced to a negative value, because corresponding\ndev_hold() are not called in revalidate(), aoecmd_ata_rw(), resend(),\nprobe(), and aoecmd_cfg_rsp(). This patch fixed this issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49982",
          "url": "https://www.suse.com/security/cve/CVE-2024-49982"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232097 for CVE-2024-49982",
          "url": "https://bugzilla.suse.com/1232097"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49982"
    },
    {
      "cve": "CVE-2024-49991",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49991"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer\n\nPass pointer reference to amdgpu_bo_unref to clear the correct pointer,\notherwise amdgpu_bo_unref clear the local variable, the original pointer\nnot set to NULL, this could cause use-after-free bug.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49991",
          "url": "https://www.suse.com/security/cve/CVE-2024-49991"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232282 for CVE-2024-49991",
          "url": "https://bugzilla.suse.com/1232282"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232284 for CVE-2024-49991",
          "url": "https://bugzilla.suse.com/1232284"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-49991"
    },
    {
      "cve": "CVE-2024-49993",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49993"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49993",
          "url": "https://www.suse.com/security/cve/CVE-2024-49993"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232316 for CVE-2024-49993",
          "url": "https://bugzilla.suse.com/1232316"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 0,
            "baseSeverity": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-49993"
    },
    {
      "cve": "CVE-2024-49995",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49995"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49995",
          "url": "https://www.suse.com/security/cve/CVE-2024-49995"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232432 for CVE-2024-49995",
          "url": "https://bugzilla.suse.com/1232432"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232433 for CVE-2024-49995",
          "url": "https://bugzilla.suse.com/1232433"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 0,
            "baseSeverity": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49995"
    },
    {
      "cve": "CVE-2024-49996",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-49996"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: Fix buffer overflow when parsing NFS reparse points\n\nReparseDataLength is sum of the InodeType size and DataBuffer size.\nSo to get DataBuffer size it is needed to subtract InodeType\u0027s size from\nReparseDataLength.\n\nFunction cifs_strndup_from_utf16() is currentlly accessing buf-\u003eDataBuffer\nat position after the end of the buffer because it does not subtract\nInodeType size from the length. Fix this problem and correctly subtract\nvariable len.\n\nMember InodeType is present only when reparse buffer is large enough. Check\nfor ReparseDataLength before accessing InodeType to prevent another invalid\nmemory access.\n\nMajor and minor rdev values are present also only when reparse buffer is\nlarge enough. Check for reparse buffer size before calling reparse_mkdev().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-49996",
          "url": "https://www.suse.com/security/cve/CVE-2024-49996"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232089 for CVE-2024-49996",
          "url": "https://bugzilla.suse.com/1232089"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-49996"
    },
    {
      "cve": "CVE-2024-50000",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50000"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc()\n\nIn mlx5e_tir_builder_alloc() kvzalloc() may return NULL\nwhich is dereferenced on the next line in a reference\nto the modify field.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-50000",
          "url": "https://www.suse.com/security/cve/CVE-2024-50000"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1232085 for CVE-2024-50000",
          "url": "https://bugzilla.suse.com/1232085"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-rt-5.14.21-150500.13.76.1.x86_64",
            "openSUSE Leap Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-11-13T10:13:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-50000"
    },
    {
      "cve": "CVE-2024-50001",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-50001"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix error path in multi-packet WQE transmit\n\nRemove the erroneous unmap in case no DMA mapping was established\n\nThe multi-packet WQE transmit code attempts to obtain a DMA mapping for\nthe skb. This could fail, e.g. under memory pressure, when the IOMMU\ndriver just can\u0027t allocate more memory for page tables. While the code\ntries to handle this in the path below the err_unmap label it erroneously\nunmaps one entry from the sq\u0027s FIFO list of active mappings. Since the\ncurrent map attempt failed this unmap is removing some random DMA mapping\nthat might still be required. If the PCI function now presents that IOVA,\nthe IOMMU may assumes a rogue DMA access and e.g. on s390 puts the PCI\nfunction in error state.\n\nThe erroneous behavior was seen in a stress-test environment that created\nmemory pressure.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_76-rt-1-150500.11.3.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-rt_debug-vdso-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:kernel-source-rt-5.14.21-150500.13.76.1.noarch",
          "SUSE Real Time Module 15 SP5:kernel-syms-rt-5.14.21-150500.13.76.1.x86_64",
          "SUSE Real Time Module 15 SP5:ocfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-rt-5.14.21-150500.13.76.1.noarch",
          "openSUSE Leap 15.5:kernel-rt-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-extra-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-optional-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt-vdso-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-livepatch-devel-5.14.21-150500.13.76.1.x86_64",
          "openSUSE Leap 15.5:kernel-rt_debug-vdso-5.14.2

Action not permitted

CVE-2022-48879 (GCVE-0-2022-48879)

Vulnerability from cvelistv5

fkie_cve-2022-48879

Vulnerability from fkie_nvd

suse-su-2024:3983-1

Vulnerability from csaf_suse

suse-su-2024:3985-1

Vulnerability from csaf_suse